The Wendy's CompanyRemote
Automation Engineer - Cyber Security Operations
United States of America
Full Time
3 weeks ago
$74,000 - $126,000 USD
H1B Sponsor Likely
Key skills
PythonPowerShellBashMSFT SentinelEntra IDDefenderInformation Security Incident ManagementSecurity Orchestration Automation and Response (SOAR)Enterprise SIEMIDS/IPSEndpoint security solutionsEmail security gatewaysWeb security gatewaysHost-based forensicsNetwork-based forensicsMultiple operating systems WindowsMultiple operating systems Mac OSMultiple operating systems Unix/LinuxInformation Security certifications GIACInformation Security certifications OWASPInformation Security certifications ISC2Threat HuntingRegular Expression (regex)OWASP
About this role
Wendy's is a well-known fast-food chain that emphasizes a culture of openness and inclusiveness. They are seeking an Automation Engineer to support their information security initiatives by creating automation scripts and managing security tools, while collaborating with various teams to enhance cyber threat hunting efforts.
Responsibilities:
- Creates automation playbooks in coordination with organization peers to reduce the number of tedious/manual tasks (freeing up time for other information security tasks)
- Administration, configuration, maintenance, and support of the MSFT Sentinel environment
- Creation, evaluation, updating, and maintenance of Information Security Incident Management Playbooks
- Participates in security incident response efforts by, among other things, having an in-depth knowledge of common security exploits, vulnerabilities and countermeasures
- Investigation of Cyber Security threats
- Identifies, creates, and maintains opportunities for threat intelligence automation
Requirements:
- Experience automating security functions with a scripting language such as Python, Powershell, etc
- Experience with a Security Orchestration Automation and Response tool such as MSFT Sentinel, Entra ID, Defender, etc
- Hands-on experience with information security tools such as an enterprise SIEM solution, IDS/IPS, endpoint security solutions, email/web security gateways, and other security detection/mitigation devices
- Experience with host-based and/or network-based forensics tools and techniques
- A curious mindset with attention to detail
- Experience with multiple operating systems to include Windows, Mac OS, and Unix/Linux
- Demonstrate the ability to provide written and verbal communications to management to address real-time issues and incidents, including writing formal incident reports and assisting with intelligence reports
- Advanced problem-solving skills, ability to develop effective long-term solutions to complex problems
- At least one certification within the Information Security, Information Assurance or Cybersecurity field such as GIAC, OWASP, ISC2, or similar
- Threat Hunting Experience
- Regular Expression (regex) experience