Threat Automation Engineer

Responsibilities

• Automate existing security operations processes using a SOAR platform
• Work with stakeholders to understand requirements for automating manual operations through platform integrations and playbooks
• Parse data from API integrations between vulnerability, detection, and response tools
• Use a detection-as-code pipeline to deploy threat detection rules into the security monitoring environment
• Support breach simulation activities to test existing detection rules and create new use cases
• Map threat actor tactics, techniques, and procedures (TTPs) to the FNZ control environment
• Ensure indicators of compromise are triaged and prioritized in an automated fashion using multiple enrichment sources

Requirements

• Hands-on experience with a SOAR platform and automating manual security processes
• Knowledge of threat detection and security monitoring technologies, including SIEM and EDR solutions
• Demonstrable experience working with APIs to integrate technologies and parse ingested data
• Knowledge of detection rule generation processes within a SIEM
• Understanding of the current cyber threat landscape, including threat groups and attack vectors relevant to financial services
• Experience using the MITRE ATT&CK framework to improve detective and preventative controls
• Strong analytical and problem-solving skills with a proactive approach to mitigating security risks

About the Company

FNZ is a global wealth management growth platform that integrates modern technology with business and investment operations. We partner with over 650 financial institutions and 12,000 wealth managers, supporting over 20 million people to invest in their future. Our culture is driven by our values: being customer-obsessed, thinking big, acting now, and challenging ourselves to win together.