SOAR developer Automation engineer
Share
Job Location:
Monthly Salary:
Posted on:
5 hours ago
Vacancies:
1 Vacancy
Job Summary
Division: Chief Information Security Office (CISO)
As a global critical financial infrastructure the protection of Euroclear information andassets is fundamental to the companys business. Information Security is at the core of our services firmly embedded in the management systems and processes of the company. You will be joining our Chief Information Security Office in charge of putting in place the required controls to adequately and effectively protect our information assets.
Were looking for a SOAR Developer to design build and maintain automation capabilities that strengthen our security operations.
Youll collaborate closely with Incident Response Threat Detection Engineering SOC analysts and platform teams to deliver highquality playbooks integrations and workflows.
What Youll Do:
- Build and refine SOAR playbooks automations integrations dashboards and orchestration logic.
- Communicate and demonstrate new or updated workflows to operational teams.
- Ensure automation content is productionready with clear maintainable documentation.
- Continuously monitor and optimize workflows to improve reliability efficiency and stability.
- Maintain and update SOAR workflows integrations content packs and vendor modules.
- Promote content across environments using Gitbased version control and peer reviews.
What You Bring:
- Strong Python skills for automation and integrations.
- Experience with REST APIs (OAuth2 API keys) JSON and common web service standards.
- Handson experience with automation testing: functional scenariobased regression and integration.
- Experience managing SOAR content across multistage environments (dev integration prod).
- Knowledge of secure development practices logging/auditing safeguards and safe API handling.
- Understanding of IR workflows (triage investigation containment). SOC/IR experience is a plus.
- Solid understanding of SIEM EDR logging pipelines network/security fundamentals.
- 3 years in SOAR engineering security automation SOC engineering or IRrelated roles.
- Handson experience with Palo Alto Cortex XSOAR (Demisto).
Nice to Have:
- Modular reusable SOAR components (subplaybooks automation templates).
- CI/CD experience for validation and promotion of SOAR content.
- Experience maintaining XSOAR content packs or marketplace integrations.
- Additional scripting (JavaScript PowerShell).
- Integrating SIEM and email ingestion sources (Splunk ES MS Graph Mail API).
- Integration of external platforms (EDR Azure ServiceNow).
- Familiarity with eventdriven workflows (webhooks async APIs message triggers).
Soft Skills That Make You Great:
- Clear and confident communicator with both technical and nontechnical audiences.
- Analytical structured and methodical problemsolver.
- Collaborative openminded autonomous and reliable.
- Fast learner with strong attention to detail and disciplined documentation habits.
- Comfortable in fastchanging environments and able to manage multiple priorities.
ABOUT US
Why Join Us
Embark on your new adventure at Euroclear and work at the heart of the global capital markets. We connect over 2000 financial institutions across the globe. As an open and resilient infrastructure we contribute to the stability of the financial markets. We help clients cut through complexity lower costs and mitigate risks of financial transactions. At Euroclear we have a clear ambition to use our key role to facilitate and accelerate a sustainable global financial system.
What We Offer
- Work closely with inspiring supportive and engaged colleagues from more than 80 different countries
- Practice your talents in a highly professional international environment
- Join a learning and development environment with an emphasis on knowledge sharing and training
- Competitive salary and comprehensive benefits
New Ways of Working
Find your own optimal balance within our hybrid working model where you can connect at the office and at the same time benefit from remote working.
Great Place to Work for All
We are committed to creating an inclusive culture that celebrates diversity and strives to be a Great Place to Work for All. All qualified applicants will be considered for employment regardless of any aspect that makes them unique (including race religion national origin gender sexual orientation age marital status pregnancy disability ...). If you need any specific accommodation due to disability or any other reason you can let the recruiter know during your application process.
About the team
The Cyber Defence Centre provides continuous identification monitoring and response to threats to the Euroclear infrastructure applications and data. It is designed as the last line of defence for the organisation in the event that actors; both internal and external have penetrated our preventative cyber controls with malicious intent.
Required Experience:
IC
Key Skills
About Company
Why join us Embark on your new adventure at Euroclear, and work at the heart of the global capital markets. We connect over 2,000 financial institutions across the globe. As an open and resilient infrastructure, we contribute to the stability of the financial markets. We help clients ... View more
