Security Automation Engineer

Are you looking to elevate your cyber career? Your technical skills? Your opportunity for growth? Deloitte's Government and Public Services Cyber Practice (GPS Cyber Practice) is the place for you! Our GPS Cyber Practice helps organizations create a cyber minded culture and become stronger, faster, and more innovative. You will become part of a team that advises, implements, and manages solutions across five verticals: Strategy, Defense and Response; Identity; Infrastructure; Data; and Application Security. Our dynamic team offers opportunities to work with cutting-edge cyber security tools and grow both vertically and horizontally at an accelerated rate. Join our cyber team and elevate your career.

• Support clients with data protection, IoT, and overarching cloud capabilities.
• Implement core and cloud infrastructure security to manage risks and exposure.
• Perform cyber reconnaissance to illuminate a potential attack surface area.
• Provide threat and vulnerability management to federal clients and teams.
• Analyze tactical network architectures and topologies to assess security risks.
• Responsible for improving the overall security posture for its customers by enhancing communication and automation between various security monitoring and alerting tools in the environment.
• Integrate Splunk Enterprise Security and Splunk Phantom to create a single dashboard for monitoring and responding to notable security events.

• Bachelor's degree required
• Must be legally authorized to work in the United States without the need for employer sponsorship, now or at any time in the future
• Must be able to obtain and maintain the required clearance for this role
• Travel up to 10%
• 5+ years of IT and/or Cyber experience
• •Experience scripting and working with APIs (preferably Python and REST APIs)
• Fundamental understanding of software, computer, cloud computing, and network architectures
• Hands on Splunk engineering experience
• Experience with any SOAR (Security Orchestration, Automation, and Response) platform such as Phantom or Demisto

• Prior professional services or federal consulting experience
• Previous Security Operations Center experience
• Experience in mobile and endpoint security
• Certifications (e.g., CompTIA Security+, CEH, CISSP)
• Linux system administration experience
• One or more of the following certifications: Cloud (AWS, Azure, Google Cloud Platform); SIEM (Splunk Certified Architect, Splunk Core Certified Consultant, Splunk Trust Member, Elastic Certified Engineer)