Swissquote
Cybersecurity SOAR Integration Engineer(m/w/x)
Full-timeInternshipOn-site
Schweiz
New Job?Nejo!
The AI Job Search Engine
SWSwissquote
Cybersecurity SOAR Playbook Engine Developer(m/w/x)
Schweiz
Full-timeInternshipOn-site
Nejo AI Summary
Building SOAR playbook execution engines with Python 3.9+ for online banking at a Swiss leader with 650,000+ clients. Good Python proficiency, YAML syntax, and basic cybersecurity fundamentals required. Direct impact on critical online banking security infrastructure.
Requirements
- Good Python proficiency
- Good YAML syntax and workflow definition knowledge
- Basic cybersecurity fundamentals and incident response understanding
- Interest in security operations and SOC processes
- Familiarity with threat landscapes and security concepts
- Basic test writing experience or willingness to learn
- Version control (Git) experience
- SOAR platforms (Splunk SOAR, Cortex XSOAR) experience
- Familiarity with security tools (Splunk, QRadar, Chronicle, CrowdStrike)
- Linting tools experience
- Workflow engines or orchestration systems knowledge
Tasks
- Build and enhance the core SOAR playbook execution engine using Python 3.9+
- Implement YAML parsers
- Implement workflow executors
- Implement conditional logic evaluators
- Implement decision tree engines
- Design YAML-based SOAR playbooks for automated incident response
- Create workflows for phishing detection
- Create workflows for malware analysis
- Create workflows for ransomware response
- Create workflows for threat intelligence enrichment
- Create workflows for IOC blocking
- Develop Python utility functions to extend playbook capabilities
- Build data transformation logic
- Build security analysis functions
- Implement error handling, logging, and monitoring
- Optimize performance
- Implement parallel execution
- Implement asynchronous operations
- Write unit tests and create regression test suites
- Test playbooks with realistic security scenarios
- Validate end-to-end automation flows
- Implement and enforce coding standards using linting tools
- Collaborate with the Integration Intern to understand available connectors
- Ensure playbooks effectively utilize all integrations
Education
- Vocational certificationOR
- Bachelor's degreeOR
- Master's degree
Languages
- English – Business Fluent
Tools & Technologies
- Python
- YAML
- Git
- Splunk SOAR
- Cortex XSOAR
- Splunk
- QRadar
- Chronicle
- CrowdStrike
Find the original job posting in its most current version here. Nejo automatically captured this job from the website of Swissquote and processed the information on Nejo with the help of AI for you. Despite careful analysis, some information may be incomplete or inaccurate. Please always verify all details in the original posting! Content and copyrights of the original posting belong to the advertising company.
Not a perfect match?
- Swissquote
Senior Information Security Engineer(m/w/x)
Full-timeOn-siteSeniorSchweiz - Banque Internationale à Luxembourg (Suisse) SA (BIL Suisse)
Azure Cloud Architect(m/w/x)
Full-timeOn-siteSeniorSachseln - Swissquote
Market Surveillance Officer(m/w/x)
Full-time/Part-timeOn-siteNot specifiedSchweiz - Swissquote
Head of Banking Solutions(m/w/x)
Full-timeOn-siteSeniorSchweiz
SWSwissquote
Cybersecurity SOAR Playbook Engine Developer(m/w/x)
Schweiz
Full-timeInternshipOn-site
Nejo AI Summary
Building SOAR playbook execution engines with Python 3.9+ for online banking at a Swiss leader with 650,000+ clients. Good Python proficiency, YAML syntax, and basic cybersecurity fundamentals required. Direct impact on critical online banking security infrastructure.
Requirements
- Good Python proficiency
- Good YAML syntax and workflow definition knowledge
- Basic cybersecurity fundamentals and incident response understanding
- Interest in security operations and SOC processes
- Familiarity with threat landscapes and security concepts
- Basic test writing experience or willingness to learn
- Version control (Git) experience
- SOAR platforms (Splunk SOAR, Cortex XSOAR) experience
- Familiarity with security tools (Splunk, QRadar, Chronicle, CrowdStrike)
- Linting tools experience
- Workflow engines or orchestration systems knowledge
Tasks
- Build and enhance the core SOAR playbook execution engine using Python 3.9+
- Implement YAML parsers
- Implement workflow executors
- Implement conditional logic evaluators
- Implement decision tree engines
- Design YAML-based SOAR playbooks for automated incident response
- Create workflows for phishing detection
- Create workflows for malware analysis
- Create workflows for ransomware response
- Create workflows for threat intelligence enrichment
- Create workflows for IOC blocking
- Develop Python utility functions to extend playbook capabilities
- Build data transformation logic
- Build security analysis functions
- Implement error handling, logging, and monitoring
- Optimize performance
- Implement parallel execution
- Implement asynchronous operations
- Write unit tests and create regression test suites
- Test playbooks with realistic security scenarios
- Validate end-to-end automation flows
- Implement and enforce coding standards using linting tools
- Collaborate with the Integration Intern to understand available connectors
- Ensure playbooks effectively utilize all integrations
Education
- Vocational certificationOR
- Bachelor's degreeOR
- Master's degree
Languages
- English – Business Fluent
Tools & Technologies
- Python
- YAML
- Git
- Splunk SOAR
- Cortex XSOAR
- Splunk
- QRadar
- Chronicle
- CrowdStrike
Find the original job posting in its most current version here. Nejo automatically captured this job from the website of Swissquote and processed the information on Nejo with the help of AI for you. Despite careful analysis, some information may be incomplete or inaccurate. Please always verify all details in the original posting! Content and copyrights of the original posting belong to the advertising company.
About the Company
Swissquote
Industry
FinancialServices
Description
The company is the Swiss leader in online banking, providing trading, investing, and banking services to over 500,000 clients.
Not a perfect match?
- Swissquote
Cybersecurity SOAR Integration Engineer(m/w/x)
Full-timeInternshipOn-siteSchweiz - Swissquote
Senior Information Security Engineer(m/w/x)
Full-timeOn-siteSeniorSchweiz - Banque Internationale à Luxembourg (Suisse) SA (BIL Suisse)
Azure Cloud Architect(m/w/x)
Full-timeOn-siteSeniorSachseln - Swissquote
Market Surveillance Officer(m/w/x)
Full-time/Part-timeOn-siteNot specifiedSchweiz - Swissquote
Head of Banking Solutions(m/w/x)
Full-timeOn-siteSeniorSchweiz