Ensign
Associate,SecurityEngineer
Neural analysis suggests this role is
optimal for Mid+ candidates.
“Associate, Security Engineer at Ensign. Skills: SOAR, Automation, SIEM, Cloud computing. Own playbook library. Manage playbook library”
Industry & Context.
Apply knowledge to solve problems
What They're Looking For.
Must Have
Experience with Python, Experience with web programming libraries, Experience with object-oriented programming, Experience with git, Experience with code repositories, Working experience in CI/CD, Understanding of Mitre ATT&CK framework, In-depth understanding of Cloud computing, Hands-on experience with AWS, Azure, or GCP, Ability to communicate with clarity, Basic understanding of SaaS platforms, Basic understanding of firewalls, Basic understanding of IPS, Basic understanding of EDR, Basic understanding of proxy, Basic understanding of SIEM, Basic understanding of Windows OS, In-depth understanding of Linux OS, Troubleshooting Linux OS, Curious mindset, Drive to acquire new knowledge, Apply knowledge to solve problems
What You'll Do.
Manage playbook library
Own automation library
Manage automation library
Lead continuous improvement program
Gather automation requirement
Gather feedback for automations
Design SOAR playbooks
Develop SOAR playbooks
Deploy SOAR playbooks
Research industry innovations
Research industry trends
Research best practices
Suggest SOC automation ideas
Implement SOC automation ideas
Develop SIEM integrations
Develop SOAR integrations
Manage SOAR platforms
Troubleshoot SOAR platforms
Manage underlying infrastructure
Troubleshoot underlying infrastructure
How You'll Work.
Team & Collaboration
Engage client; Engage CSOC stakeholders
Communication Scope
Communicate with clarity
Full Job Description
Ensign is hiring ! **Duties and Responsibilities:** * Own and manage playbook & automation library * Lead continuous improvement program for SOC Orchestration Automation & Response topic * Engage client & other CSOC stakeholders regularly to gather new automation requirement and feedback for existing automations * Design, Develop, Test and Deploy SOAR playbooks, automations based on client & CSOC requirements * Research on industry innovations, trends, best practices and suggest/implement SOC automation ideas * Develop SIEM and SOAR integrations with 3rd party services/tools used by CSOC and clients * Manage and troubleshoot SOAR platforms and underlying infrastructure **Requirements:** * Experience with Python and it’s libraries related to web programming * Experience with at least one of the object-oriented programming languages * Experience in working with git and code repositories such as Gitlab, Github and AWS Code Commit * Working Experience in CI/CD technologies and processes * Understanding of Mitre ATT&CK framework * In-depth Understanding of Cloud computing technologies and hands on experience with minimum one of the cloud platforms such as AWS, Azure and GCP. * Ability to communicate with multiple stakeholders with clarity * Basic understanding of functionality of SaaS platforms, firewalls, IPS, EDR, proxy, SIEM and Windows OS * In-depth understanding of Linux OS and related troubleshooting * Curious mindset, drive to acquire new knowledge/skills/insights and apply them to solve problems. * Bachelors Degree in computer engineering, Computer Science, Cyber Security, Information Security or other equivalents
Applying for this Associate, Security Engineer role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
How to Apply on Workday
- Workday has a multi-step form — save your progress after every section.
- "Apply With LinkedIn" can fail or lose data; manual entry is more reliable.
- Watch for the "Submit for Review" final step — hitting "Save" alone does not submit.
- Job requisition numbers are useful when following up with HR by email.
ANONYMOUS · UNFILTERED
What do employees actually say about Ensign?
Real rants from real employees. Read before you apply.