Location: Herndon, VA

Job ID: 5746

Capital TechSearch is seeking Security Operations Developer
This position will report to the Senior Manager, SOC Engineering and Automation, and be a core team member of the group responsible for streamlining SOC security functions. This role is also responsible for ensuring the effective use of application, integration and operation of key security products utilized within the Global Security. 
Job Responsibilities:
  • Handle systems administration of Linux and Windows servers in hybrid data center environment
  • Design and implement new features to reduce mean-time-to-resolution of security events
  • Assist in developing an automated framework for Security Tool deployment and development, leveraging various scripting languages and Open-source and COTs products
  • Work closely with the Security Operations (SOC) team to develop new and innovative SOC, Incident Response, and Threat Intelligence use cases. Convert those use cases into automation Pipelines using COTS and Open-source products. Develop custom courses of action / workflows to enhance Pipeline automated responses
  • Act as the connection point between the SOC/Threat/IR and automation team to solve complex problems
  • Help automate specific SOC roles/functions out of existence
  • Develop, test, and implement out-of-the-box approaches to identify malicious and suspicious behavior
  • Responsible for identifying integration opportunities between the various siloed tools in an effort to help create a unified and streamlined ecosystem
  • Help create, enhance and continuously update documentation and knowledge base (user guides, quick starts, documentation, blog posts, demos)
  • Increase the speed of our Dev team's ability to deliver features to production while working with other DevOps Automation Engineers
  • Contribute to the development of usage metrics to help show effectiveness

Job Qualifications:
  • 5 years' experience in Information Technology
  • 3 years' experience in a security operations focused environment
  • 3 years' experience in one or more of the following: Java, Python, Ruby, Bash
  • 1 year of experience working with enterprise container platforms such as Docker
  • Experience supporting incident response in a malware, host, network, forensics or log analyst role
  • Hands-on experience with Airflow and Kubernetes (big plus)
  • Experience interacting with APIs to automate processes
  • Experience consuming REST APIs
  • Understanding of CI/CD, DevOps and agile principles
  • Ability to identify and automate common and repeatable tasks/processes
  • Experience with Linux environments
  • Experience with virtualization technologies a plus
  • Strong written and verbal communication skills
  • Sound problem resolution, judgment, negotiating and decision making skills
  • Strong work ethic and commitment to accomplish assigned tasks

Eligible to work for any employer in the USA

To be immediately and seriously considered for this exceptional opportunity please apply below. Your responses will be held in the strictest confidence.

Please call our office if you have any questions. Capital TechSearch, Inc. is an Equal Opportunity Employer.

Apply for this position

  • Accepted file types: doc, docx, pdf, txt.
    File types permitted: .DOC, .DOCX, .PDF, or .TXT
  • Accepted file types: docx, doc, pdf, txt.
    docx, doc, pdf, or txt files
  • Add any additional information in the notes that describes your value and fit for the position. Additional considerations may include your availability, compensation, and if you are not local to the position, your interest in relocating.

By clicking "Apply" you agree to receive new job updates, information and news from Capital TechSearch, Inc. You can always unsubscribe from our communications at any time.