Security Efficiency Expert (Internal)

Job Description:

Intelligent Technical Solutions (ITS) is a national Managed Security Service Provider (MSSP) that offers a range of cybersecurity solutions and services to various industries and sectors. We are looking for a Cybersecurity Efficiency Expert to join our Cybersecurity department and work closely with other departments to enhance our security posture and efficiency through automation and process improvement.

Job Responsibilities

• Assist with API setup and security for various applications and systems.
• Help to lead API penetration testing efforts.
• Create dashboards and other metrics for the Security Operations Center (SOC) and other areas of Cybersecurity.
• Occasionally work with other departments to automate and streamline non cybersecurity functions of the business.
• Work with the SOC to automate alerts, alert response, alert enrichment, and ticket creation.
• Work with other departments to help with automation and process/system improvement for their business objectives and workflows.
• Understand and document existing processes and identify areas for improvement and optimization.
• Create and help implement improved processes and automations using various tools and technologies.
• Attend 1:1s with existing employees and attend departmental meetings to better understand their roles and responsibilities and the high-level business objectives.

Job KPIs

This role requires a deep understanding of KPIs

• Reduction in Manual Processes: Measure the reduction in manual tasks due to automation.
• Efficiency Gains: Quantify improvements in efficiency across various departments due to process optimizations.
• Response Time: Track the reduction in alert response times as a result of automation.
• Incident Reduction: Monitor the decrease in the number of security incidents through improved processes and automation.
• Employee Satisfaction: Gauge the satisfaction of employees in various departments regarding the improvements in their workflows.

Job Qualifications

• At least 3 years of experience in cybersecurity, automation, or related roles.
• Strong knowledge of cybersecurity concepts, such as Incident Response Management, Cyber best practices, Cyber kill chain, and different relevant models.
• Proficient in programming/scripting/automation languages. Examples include Jinja, PowerShell, Python, Bash, Java, Perl, Ruby, Ansible, Terraform, Chef, Puppet, or others.
• Experience with API setup and security, dashboard and metric creation, and alert and ticket automation.
• Excellent communication and collaboration skills, with the ability to work well with others and understand and document their needs and objectives.
• Strong analytical and problem-solving skills, with the ability to identify and implement process and system improvements and automations.
• Self-motivated and eager to learn new tools and technologies.