Job
Description
About The Role
Project Role :Security Advisor
Project Role Description :Provide enterprise-level advice to make organizations cyber resilient. Assist in navigating the complex landscape of cyber threats, ensuring robust digital asset protection while maintaining trust with stakeholders.
Must have skills :Security Information and Event Management (SIEM)
Good to have skills :NA
Minimum 7.5 year(s) of experience is required
Educational Qualification :15 years full time education
Summary:As a Security Advisor, we are seeking a skilled SOAR Engineer to design, develop, implement, and maintain automation workflows that improve the efficiency and effectiveness of our security operations. This role is crucial in reducing incident response times, minimizing manual effort, and enhancing the overall security posture through intelligent orchestration of tools and processes. Roles & Responsibilities:- Design, implement, and maintain playbooks within SOAR platforms (CrowdStrike Falcon Fusion).- Develop integrations between SOAR and other security tools such as SIEM, EDR, firewalls, ticketing systems, threat intelligence platforms, etc.- Customize connectors/APIs and ensure efficient, reliable data flow between systems.- Translate incident response and SOC analyst tasks into automated workflows.- Write scripts (e.g., Python, JavaScript, PowerShell) to support custom automation actions.- Optimize automation for scalability, performance, and maintainability.- Collaborate with SOC analysts and threat responders to understand and document use cases and provide hands-on support during incident investigations when automation is involved.- Build and refine response workflows that enable semi-automated and fully automated incident handling.- Monitor SOAR platform health, performance, and efficiency.- Conduct regular reviews of playbooks and workflows to reduce false positives and manual intervention.- Tune automation rules based on feedback and changing threat landscapes.- Create and maintain detailed documentation for all playbooks, integrations, and scripts.- Work closely with IT, DevOps, and security teams to gather requirements and coordinate integrations. Professional & Technical
Skills:
-
Must To Have Skills:Proficiency in Security Information and Event Management (SIEM).- Strong understanding of incident response and threat management.- Experience with security compliance frameworks such as ISO 27001 or NIST.- Familiarity with network security protocols and technologies.- Ability to analyze security logs and generate actionable insights.- Experience integrating SOAR with:SIEMs (CrowdStrike Next-Gen SIEM), EDR tools (e.g., CrowdStrike), Cloud security platforms (e.g., AWS, Azure, GCP)- Familiarity with MITRE ATT&CK and other security frameworks.
Additional Information:- The candidate should have minimum 10+ years of experience in cybersecurity, with 5+ year specifically in SOAR engineering or automation.- Bachelors degree in computer science, Cybersecurity, or a related field.- This position is based at our Bengaluru office.- A 15 years full time education is required.- Strong scripting/programming skills (Python preferred).- Experience working with REST APIs, JSON, and automation frameworks.- Understanding of SOC operations, incident response, and threat intelligence. Qualification 15 years full time education
