Senior Incident Response Automation Engineer

About Us:

At IAI we are at the forefront of cyber security innovation, committed to safeguarding the digital world. Our mission is to protect critical information and systems from ever-evolving threats. Join our elite team of cyber security experts and be a part of our cutting-edge solutions that secure the future.

Job Description:

We seek a highly motivated and skilled Incident Response Engineer with expertise in writing code and scripts for automatic response procedures, to join our growing security team. In this role, you will be responsible for designing, implementing, and maintaining our SOAR platform to automate security workflows, improve efficiency, and enhance our overall security posture.

Responsibilities:

• Design, develop, and implement automated workflows for cybersecurity incident response, threat hunting, and security operations processes, integrating with various security tools.
• Develop custom scripts and tools to automate security monitoring, threat detection, and incident response.
• Create and maintain playbooks for automated response actions, including enrichment, containment, and remediation procedures, leveraging SOAR capabilities.
• Integrate various security tools, SIEM solutions, and external systems via APIs to enhance data flow and automation capabilities.
• Collaborate with the security team to identify opportunities for automation and improvement of security processes.
• Monitor and troubleshoot SOAR platform functionality and performance.

Qualifications:

• Israeli Citizenship
• 2+ years of experience in Detection & Response or a similar security role.
• 2+ years of experience working with SOAR platforms, such as Palo Alto Networks Cortex XSOAR, Google Chronicle, Torq, or similar.
• Proficiency in scripting languages – Python is a strong advantage.
• Strong understanding of API integration concepts and experience integrating security tools and systems.
• Experience with SIEM solutions, such as Google Chronicle, Sumologic, IBM QRadar, or Elastic SIEM, is a plus.
• Experience building complex automations and integrations using SOAR platforms.
• Excellent analytical and problem-solving skills.
• Strong communication and collaboration skills.
• Ability to work independently and as part of a team.
• Working experience with AI and machine - strong advantage.