Experience Inc. Jobs

The Team You Will Join 

The Cyber Platforms and Automation team is primarily based out of MetLife’s global technology headquarters in Cary, NC. This team manages the key cybersecurity platforms including SIEM, UEBA, SOAR, MSV, NDR, and the Cybersecurity Lab, develops security content and processes to automate threat detection and incident response. The team takes immense pride to pursue the vision to transform the Security Operations Center (SOC) to next generation with AI-driven cybersecurity technologies and processes to detect and predict threats with high accuracy, to prevent and to automate response to threats with high efficiency.

The Opportunity 

The Senior Security Orchestration and Automation Response (SOAR) consultant will be responsible to develop and run an ongoing program of addressing repeatable security design patterns and integrating various Cyber Security platforms. The position requires experience with CyberSecurity related tools, full-stack hands-on programming abilities and ability to analyze, design and develop new solutions and approaches quickly. Ability to evangelize, envision new proof of concepts, implementation, integration and coordination as well as familiarity with SCRUM are considered plus. This role requires strong combination of technical skills, security knowledge and strong problem-solving skills.

How You’ll Help Us Build a Confident Future (Key Responsibilities)

• Design and implement automation use-cases and workflows for incident response, threat hunting, Fraud and insider risk management and vulnerability management.

• Developing custom integration, API Integration with various tools & platforms (e.g.: Threat Intel Platform TIP, firewalls, SIEM etc.) to enhance SOAR capabilities.

• Write code/scripts/automation to detect, prevent or integrate new IOCs or to automate cyber security processes to increase efficiencies.

• Collaborate with Security Analysts to tune and enhance cyber security solutions and technologies to keep up with the latest threats.

• Analyzing security data to identify automation opportunities.

• Monitor and troubleshoot complex systems, tools and/or networking solutions.

• Administrate SOAR platform and manage content release.

• Perform investigative research, analysis and troubleshooting to identify, resolve, and report complex security issues.

• Provide insight on issues and serve as a mentor to peers and team members for assigned area of responsibility. Follow written risk and compliance policies and procedures.

What You Need to Succeed

(Required Qualifications)

• Bachelor’s degree in computer science, information systems or related field.

• 5+ years of related experience in Cyber Security, Incident Response, Information Security and/or Information Technology.

• Experience in Security Information and Event Management (SIEM), Firewalls/IPS/IDS and Windows, Linux, and Apple endpoint security solutions.

• Hands on experience coding with Python or similar development languages.

• Advanced troubleshooting skills (e.g.: Wireshark, host forensics, log analysis and debugging).

• Understanding of general incident response methodologies, threats and vulnerabilities, cyber security practices, and security tool architectural and engineering principles.

• Strong analytical and problem-solving skills are required.

• Strong communication skills, both written and verbal.

   What Can Give You an Edge

(Preferred Qualifications)

• Relevant technical and security certifications such as CISSP, GIAC or any SOAR certificates.

• C#, .NET development experience.

• 2+ years hands on experience with SOAR platform.

• SOAR platform administration and content release management.

• PowerShell, JavaScript, or API development experience preferred.

• Understanding of national and international laws, regulations, policies and ethics related to cybersecurity.

Equal Employment Opportunity/Disability/Veterans

If you need an accommodation due to a disability, please email us at accommodations@metlife.com. This information will be held in confidence and used only to determine an appropriate accommodation for the application process.

MetLife maintains a drug-free workplace.