Python Offres d'emploi - Vaughan, ON

Job description

HireArt is helping our client find a Security Operations Center (SOC) Engineer to help strengthen the organization’s security posture through automation, threat detection, and proactive threat hunting.

In this role, you’ll enhance security operations by developing automated workflows, improving detection capabilities, and responding to sophisticated cyber threats. You’ll work closely with security and engineering teams to build scalable automation and improve the effectiveness of incident response processes.

The ideal candidate has strong experience with Security Information and Event Management (SIEM) and Security Orchestration, Automation, and Response (SOAR) platforms, along with proficiency in Python for security automation.

As a Security Operations Center (SOC) Engineer, you'll:

• Maintain and optimize SIEM and SOAR platforms to ensure effective detection and response to security threats.
• Develop and tune detection and correlation rules, dashboards, and reports within the SIEM to identify anomalous or malicious activity.
• Create, manage, and optimize SOAR playbooks to automate incident response and streamline SOC workflows.
• Use Python scripting to develop custom integrations and automate repetitive security operations tasks.
• Build and maintain automation workflows that improve threat detection, alert triage, and incident response efficiency.
• Integrate security tools and threat intelligence feeds with SIEM and SOAR platforms using APIs and custom scripts.
• Conduct proactive threat hunting to identify potential security gaps, suspicious activity, and indicators of compromise.
• Analyze alerts and security telemetry from multiple sources to investigate and respond to potential incidents.
• Collaborate with information security and cross-functional teams to improve the organization’s overall security posture.
• Develop and maintain documentation for detection rules, automation workflows, and incident response procedures.

Requirements

• High school diploma or equivalent
• 6+ years of experience in security engineering supporting a SOC environment or similar security operations function
• Demonstrated experience with SOAR platforms such as Palo Alto Cortex XSOAR, Splunk SOAR, or Tines, including playbook development
• Proficiency in Python for scripting and security automation
• Strong understanding of incident response methodologies, threat intelligence, and cybersecurity frameworks such as MITRE ATT&CK and NIST
• Excellent analytical and problem-solving skills with the ability to operate effectively in a fast-paced environment

Preferred Qualifications:

• Relevant industry certifications such as CISSP, GCIH, or similar
• Experience with cloud security environments including AWS, Azure, or GCP
• Familiarity with additional scripting languages such as PowerShell or Bash
• Knowledge of network and endpoint security solutions

Benefits:

• Pre-tax commuter benefits
• Employer (HireArt) Subsidized healthcare benefits (eligibility begins on the first of the month following 60 days of service)
• Flexible Spending Account for healthcare-related costs
• HireArt covers all costs for short and long-term disability and life insurance
• 401k package

Commitment: This is a full-time, ongoing contract position staffed via HireArt. It will be hybrid (requiring at least three days per week onsite) and available to candidates who are local to the Foster City, CA area.

HireArt values diversity and is an Equal Opportunity Employer. We are interested in every qualified candidate who is eligible to work in the United States. Unfortunately, we are not able to sponsor visas or employ corp-to-corp.