Demisto Security Operations Expert with Security Clearance

Company: Tallon Recruiting & Staffing
Location: San Antonio
Posted on: June 12, 2021

Job Description:

Demisto Security Operations Expert TX, San Antonio 78249 Security Clearance: U.S. Citizen, Current Security Clearance, Secret Skills: Demisto, SOAR, SOC, Python, PAN, SecOps, containers, Splunk, SIEM, security administration, cybersecurity We are seeking a SOAR/Demisto SME to support integration development for an enterprise-wide IT Infrastructure modernization effort supporting a DoD environment. Qualified candidates will have experience with threat detection and response and hands-on expertise working with emergent cyber tools and security tool integration using Palo Alto Networks (PAN) tools or Security Orchestration, Automation and Response (SOAR) products. Python development experience is required. Duties and responsibilities include: * Support cybersecurity goals for SOC operations developing automation and supporting orchestration content * Provide support for the development of integrations between SOAR (Demisto) and security products, tools, and sensors * Contribute expertise to improve security posture and resolution for incidents, security applications, and security architecture * Support Agile development and prototyping * Support containerized development * Support API integration and research Requirements include: * U.S. citizenship * Current security clearance (Secret minimum) * 4+ years of cyber experience; DoD environment preferred * Bachelor's degree in a related discipline preferred * Additional years of relevant work experience will be considered as a substitute * Experience working with a SecOps team providng hands-on support for network and security administration using SOAR * Experience with Demisto automated incident response platform * Prior work in an Agile environment using a DevOps model and rapid prototyping * Understanding of FISMA standard * Understanding of FedRAMP security requirements for cloud computing including NIST 800 and RMF security controls * Experience with API coding, research, and integration using Python and/or JavaScript * Experience with security tool integration (SIEM) using PAN or SOAR * Experience supporting containerized development such as Docker, Kubernetes, etc. * Experience with Splunk enterprise security is preferred * Industry recognized cloud certification, AWS preferred * Industry recognized cybersecurity certification is preferred * Prior experience supporting USAF technology infrastructure is a plus *MON #CB #D #ZR . Tallon Recruiting and Staffing provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, marital status, genetic information, or any other characteristic protected by federal, state, or local laws. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training. We comply with Form I-9 identity and legal work authorization requirements and utilize E-Verify for Employment Eligibility Verification in accordance the Immigration Reform and Control Act of 1986 (IRCA). Individuals with disabilities who need assistance with the application process can reach us by email at or telephone 571-333-2151. For more information please visit us at .

Keywords: Tallon Recruiting & Staffing, San Antonio , Demisto Security Operations Expert with Security Clearance, Other , San Antonio, Texas