Python Developer/Automation Engineer
at Leidos
Virginia, Virginia, USA -
| Start Date | Expiry Date | Salary | Posted On | Experience | Skills | Telecommute | Sponsor Visa |
|---|---|---|---|---|---|---|---|
| Immediate | 30 Nov, 2024 | USD 183300 Annual | 03 Sep, 2024 | 2 year(s) or above | Spl,Javascript,Json,Firewalls,Xml,Phantom,Python,Routers | No | No |
Required Visa Status:
| Citizen | GC |
| US Citizen | Student Visa |
| H1B | CPT |
| OPT | H4 Spouse of H1B |
| GC Green Card |
Employment Type:
| Full Time | Part Time |
| Permanent | Independent - 1099 |
| Contract – W2 | C2H Independent |
| C2H W2 | Contract – Corp 2 Corp |
| Contract to Hire – Corp 2 Corp |
Description:
JOB DESCRIPTION:
The U.S. Department of Homeland Security (DHS), Customs and Border Protection (CBP) Security Operations Center (SOC) is a U.S. Government program responsible to prevent, identify, contain and eradicate cyber threats to CBP networks through monitoring, intrusion detection and protective security services to CBP information systems including local area networks/wide area networks (LAN/WAN), commercial Internet connection, public facing websites, wireless, mobile/cellular, cloud, security devices, servers and workstations. The CBP SOC is responsible for the overall security of CBP Enterprise-wide information systems, and collects, investigates, and reports any suspected and confirmed security violations.
Leidos is seeking a Python Developer/Automation Engineer to join our team. As a member of this highly technical Operations Enhancement team supporting U.S. Customs and Border Protection (CBP), you will be responsible for developing, testing, and maintaining scripts/code used for automating workflows, processes and tasks within the Security Orchestration, Automation, and Response (SOAR) platform in support of the CBP SOC.
BASIC QUALIFICATIONS:
Have expert proficiency with Python.
Working knowledge of SOAP/REST APIs, JSON, HTML/CSS, Javascript, XML
Experience with SOAR platforms such as Swimlane, Phantom, Demisto, etc
Experience as a SOC Analyst and/or Incident Responder
Authored SOC SOPs, playbooks, work instructions and/or other process documents
Familiarity with Splunk Search Processing Language (SPL) and/or Elastic Domain Specific Language (DSL)
General networking knowledge to include operation of routers, firewalls, DNS, DHCP, subnetting, VPN and Web Proxies
PREFERRED QUALIFICATIONS:
Should have 2 years of experience serving as a SOC Analyst or Incident Responder
Responsibilities:
Author, test, and maintain automation scripts/workflows within SOAR platform.
Design, implement, and maintain efficient and reusable Python code.
Review, debug, and resolve technical issues throughout all stages of SDLC.
Integrate SOAR platform with other security tools and APIs to execute automated workflows.
Coordinate with System Administrators, Engineers, and ISSOs to provision service accounts and/or grant required permissions.
Assist with process development and process improvement for Security Operations to include creation/modification of SOPs, Playbooks, and Work instructions.
Measure effectiveness of process improvement and automation efforts via metrics and KPIs.
REQUIREMENT SUMMARY
Min:2.0Max:7.0 year(s)
Information Technology/IT
IT Software - Network Administration / Security
Software Engineering
Graduate
Proficient
1
Virginia, USA
