Security Automation Lead

Posted Date about 1 month ago
Location Dubai
Discipline Information Technology
Job Reference 30963
Salary 300000.0
Security Automation Lead
Dubai - UAE

Job description
The Security Automation Lead is responsible for building & enhancing our client’s Managed Security Services platform to cater to existing & future requirement. Primary goal of this role is to utilize automation for faster provisioning, efficient operations & bring in agility in cyber security incident handling. This role will also significantly contribution to project like ‘Unicorn’ (Centralise use case management) and ‘Unify’ (SOAR) in the development and operation. The candidate will build and implement creative solutions to operational problems, including optimizing existing systems, building infrastructure, Capacity and Resilience management, and eliminating work through automation. This role works in conjunction with the Cyber operations, Cyber Defense, Platforms & Architecture and Service Delivery Governance teams to deliver successful outcomes as agreed between our client and its customers.

Job requirements

•  The right candidate is both extremely hands-on – technically excellent, with solid engineering principles – and exhibits strong people managing skills for managing the automation team
•  Automate provisioning of new customer & services across cloud & on-prem environment
•  Develop, improve and extend the centralized automation system to add multiple functional and non-functional requirements
•  Provide expertise in Continuous test/integration/deployment of platforms
•  Work extensively on automation of distributed clusters, data pipelines, application onboarding, etc. Infrastructure as code (IaC) principles.
•  The Security Automation Lead acts as a DevSecOps Site Reliability Engineering (SRE) to solve Operational problems by applying engineering practices.
•  The DevSecOps (SRE) creates a bridge between development and operations by applying a Software engineering mindset to system administration topics.
•  The role of automation lead is to enable the broader organization to operate using DevSecOps and Automation principles, toil management, proper alerting, and monitoring, NFR practices by providing a combination of platform, process, and culture direction.
•  Developing and enabling self-service skills capabilities where required
•  Identify challenges of customer security teams, and assist security teams with SOAR best practices
•  Provide inputs to MSS Leadership regarding service development to enhance services and offerings
•  Support Pre-sales, Sales and Business Development of new and existing Services
•  Creation, Optimization and Documentation of processes, procedures, and workflow; Tracking and Reporting of SLAs, KPIs and OLAs
•  Initiate, Support and Manage Incidents, Problems, Issues, Risks and Compliance activities; 24x7 On-call for Critical or Urgent activities as required.

•  Degree in Computer Science, Information Systems, Electrical Engineering or a closely related degree
•  Overall minimum 8+ years of Site Reliability Engineering, Devsecops, SOAR (FortiSOAR/ PaloAlto XSOAR) and SIEM platform experience including other Cyber Security technologies
•  Exposure to SIEM (Splunk, Sentinel, Qradar, Securonix) systems is strongly preferred.
•  Experience coding a Full Stack application with high level programming language such as Java, Python and shell scripting
•  Strong experience of automation and configuration tools. (Ansible, Chef, Puppet, Jenkins, Terraform etc.)
•  Scripting experience with automating processes and deployments using tools such as scripting (Python, Shell, groovy, bash, perl, powershell).
•  Experience in Agile Scrum teams (i.e., JIRA/Confluence, Jenkins)
•  In depth experience of Windows, Linux administration, including system design, configuration, maintenance, upgrade, and administration.
•  Strong experience with CI/CD pipeline, source code repositories (GIT) and testing framework
•  Proficient in preparation of reports, dashboards, and documentation
•  Excellent Analytical skills, Problem solving / interpersonal / written and verbal communication skills
•  Experience in Incident, Change and Problem management process in a large scale operations
•  Experience working with Container orchestration (preferably Kubernetes)
•  Solid experience and understanding of Managed Security Service delivery.
•  Working Knowledge of Cyber Threats, Threat Actors, TTPs and how to mitigate threats in different contexts (on-prem, cloud, distributed)
•  Active listener; Excellent communication, presentation skills, Customer and Team-focused attitude

•  Health insurance with one of the leading global providers for medical insurance
•  Career progression and growth through challenging projects and work
•  Employee engagement and wellness campaigns activities throughout the year
•  Excellent learning and development opportunities
•  Annual Flights Tickets
•  Inclusive and diverse working environment
•  Flexible/Hybrid working environment
•  Open Door Policy