Security Automation Engineer

US Remote or Canada

Job Description

The Security Automation Engineer is a hands-on team player who provides technical security guidance and leadership and is responsible for advancing security operations technologies and processes through automation and integration of threat detection and protection solutions across enterprise multi cloud and on premise environments.  This individual is responsible for creating, testing and maintaining automation scripts/workflows, within a SOAR platform, in alignment with the security program, including but not limited to access control, identity management, regulatory compliance (SOX, PCI), privacy (GDPR, CCPA), network technologies, cryptography and operations.  This position will develop solutions that enhance information security processes and procedures in support of all businesses within the company. This role identifies security gaps, develops controls, determines functional and non-functional security requirements and designs solutions that meet business objectives while complying with security standards to achieve Security-by-Design principles based on the needs of the business and organizational security requirements.

This position reports directly to the Director, Information Security and Compliance.

Responsibilities:

  • Manage security projects and/or initiatives.
  • Develop, design, build, deploy and support secure and well-orchestrated automated security solutions, in multi cloud, private cloud or on-prem, using native, open source or standard toolsets.
  • Integrate SOAR platform with other security tools and APIs to execute automated workflows.
  • Design, implement, and maintain efficient and reusable code
  • Review, debug, and resolve technical issues throughout all stages of SDLC
  • Assist with process development and process improvement for Security Operations to include creation/modification of SOPs, Playbooks, and Work instructions.
  • Follow Magic Leap security standards and strategic roadmaps.
  • Provide technical support for security initiatives involving security infrastructures, frameworks, methodologies, and/or platforms.
  • Participate and recommend gap remediation efforts in regards to Information Security.
  • Conduct security reviews of security infrastructures, frameworks, methodologies, and/or platforms and produce detailed documentation.
  • Provide security automation, secure software development and integrations recommendations and guidance to stakeholders.
  • Assist with security incidents that Magic Leap may face in alignment with our incident response plan
  • Participate in the testing of security solutions and report observations to Security Management.
  • Mentor and train junior security team members
  • Help educate peers, security personnel, and other security staff about security automation, secure software development, integrations, infrastructures, frameworks, methodologies, and/or platforms.
  • Support information security implementations & promote Information Security policy enforcement throughout Magic Leap.
  • Investigate the potential impact of technologies and communicate findings to Security Management.
  • Develop basic secure standards, requirements, diagrams, and/or documents for security automation, secure software development, integrations, infrastructures, frameworks, methodologies, and/or platform needs.
  • Reviews technical solutions and makes recommendations in alignment with security requirements.
  • Collaborate with various security teams on Automation, secure software development, integrations, infrastructure, frameworks, methodologies, and/or platform needs.

Required Technical Skills:

  • 5 years of experience in the IT field, information security, software development, automation, security event monitoring, incident response, eDiscovery, forensics, infrastructure administration, compliance, security administration, audit and/or risk. 
  • 3+ years SOAR, software development, cloud infrastructure operations or information security experience.
  • Experience with SOAR platforms such as Phantom, Demisto, Cortex XSOAR, etc.
  • Working knowledge of SOAP/REST APIs, JSON, HTML/CSS, Javascript, XML
  • Deep knowledge of DevSecOps practices. Including experience with CI/CD.
  • Experience with Infrastructure as code, Terraform
  • Experience with containers (Docker, ECS, Kubernetes)
  • Experience with the AWS CLI, Gcloud CLI.
  • Experience with Security best practices and information security governance.
  • Deep understanding of information security controls.
  • Experience supporting IT security principles, frameworks and tools like NIST, CIS, OWASP top 10, SANS top 25.
  • Deep knowledge of Cloud infrastructure, network and security layers.
  • Experience in various scripting and programming languages (Python, Go, Bash etc.)
  • Understand Linux, Windows and Mac environments.
  • Knowledge of web application security, browser security models, and application security vulnerabilities such as the OWASP Top Ten
  • Understanding of network attacks, DDoS, Phishing, email protocols/security/spam, encryption, authentication, logging and log analysis, IP and device reputation, and security rules and policies
  • Familiarity with information security investigations and forensics.  Experience with Penetration Testing and tools
  • Familiarity with legal, regulatory and industry security requirements and frameworks. Including, but not limited to the following: International Organization for Standards (ISO/IEC 27001) & Payment Card Industry - Data Security Standards (PCI - DSS).

Qualifications:

  • Team player who is able to work effectively at all levels of an organization with the ability to influence others to move toward consensus
  • Customer-focused mindset, with demonstrated skill in managing expectations, providing proactive status updates, and producing high-quality work products
  • Highly self-motivated, strong attention to detail, with strong analytical and problem-solving skills
  • Strong verbal and written communication skills
  • Strong interpersonal and conflict management skills

Education:

  • Bachelor’s degree in Information Systems or related degree, or equivalent job experience
  • At least two industry standard certifications such as GSEC, Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM) or other security vendor certification.

Additional Information:

All your information will be kept confidential according to Equal Employment Opportunities guidelines.

 

#LI-Remote

Apply for this Job

* Required

  
  
When autocomplete results are available use up and down arrows to review
+ Add Another Education


U.S. Equal Opportunity Employment Information (Completion is voluntary)

Individuals seeking employment at Magic Leap, Inc. are considered without regards to race, color, religion, national origin, age, sex, marital status, ancestry, physical or mental disability, veteran status, gender identity, or sexual orientation. You are being given the opportunity to provide the following information in order to help us comply with federal and state Equal Employment Opportunity/Affirmative Action record keeping, reporting, and other legal requirements.

Completion of the form is entirely voluntary. Whatever your decision, it will not be considered in the hiring process or thereafter. Any information that you do provide will be recorded and maintained in a confidential file.

Race & Ethnicity Definitions

If you believe you belong to any of the categories of protected veterans listed below, please indicate by making the appropriate selection. As a government contractor subject to Vietnam Era Veterans Readjustment Assistance Act (VEVRAA), we request this information in order to measure the effectiveness of the outreach and positive recruitment efforts we undertake pursuant to VEVRAA. Classification of protected categories is as follows:

A "disabled veteran" is one of the following: a veteran of the U.S. military, ground, naval or air service who is entitled to compensation (or who but for the receipt of military retired pay would be entitled to compensation) under laws administered by the Secretary of Veterans Affairs; or a person who was discharged or released from active duty because of a service-connected disability.

A "recently separated veteran" means any veteran during the three-year period beginning on the date of such veteran's discharge or release from active duty in the U.S. military, ground, naval, or air service.

An "active duty wartime or campaign badge veteran" means a veteran who served on active duty in the U.S. military, ground, naval or air service during a war, or in a campaign or expedition for which a campaign badge has been authorized under the laws administered by the Department of Defense.

An "Armed forces service medal veteran" means a veteran who, while serving on active duty in the U.S. military, ground, naval or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985.


Form CC-305

OMB Control Number 1250-0005

Expires 05/31/2023

Voluntary Self-Identification of Disability

Why are you being asked to complete this form?

We are a federal contractor or subcontractor required by law to provide equal employment opportunity to qualified people with disabilities. We are also required to measure our progress toward having at least 7% of our workforce be individuals with disabilities. To do this, we must ask applicants and employees if they have a disability or have ever had a disability. Because a person may become disabled at any time, we ask all of our employees to update their information at least every five years.

Identifying yourself as an individual with a disability is voluntary, and we hope that you will choose to do so. Your answer will be maintained confidentially and not be seen by selecting officials or anyone else involved in making personnel decisions. Completing the form will not negatively impact you in any way, regardless of whether you have self-identified in the past. For more information about this form or the equal employment obligations of federal contractors under Section 503 of the Rehabilitation Act, visit the U.S. Department of Labor’s Office of Federal Contract Compliance Programs (OFCCP) website at www.dol.gov/ofccp.

How do you know if you have a disability?

You are considered to have a disability if you have a physical or mental impairment or medical condition that substantially limits a major life activity, or if you have a history or record of such an impairment or medical condition.

Disabilities include, but are not limited to:

  • Autism
  • Autoimmune disorder, for example, lupus, fibromyalgia, rheumatoid arthritis, or HIV/AIDS
  • Blind or low vision
  • Cancer
  • Cardiovascular or heart disease
  • Celiac disease
  • Cerebral palsy
  • Deaf or hard of hearing
  • Depression or anxiety
  • Diabetes
  • Epilepsy
  • Gastrointestinal disorders, for example, Crohn's Disease, or irritable bowel syndrome
  • Intellectual disability
  • Missing limbs or partially missing limbs
  • Nervous system condition for example, migraine headaches, Parkinson’s disease, or Multiple sclerosis (MS)
  • Psychiatric condition, for example, bipolar disorder, schizophrenia, PTSD, or major depression

1Section 503 of the Rehabilitation Act of 1973, as amended. For more information about this form or the equal employment obligations of Federal contractors, visit the U.S. Department of Labor's Office of Federal Contract Compliance Programs (OFCCP) website at www.dol.gov/ofccp.

PUBLIC BURDEN STATEMENT: According to the Paperwork Reduction Act of 1995 no persons are required to respond to a collection of information unless such collection displays a valid OMB control number. This survey should take about 5 minutes to complete.