The senior technical delivery specialist is responsible for Building, integrating, orchestration and end to end automation of key cybersecurity processes. This role directly supports Help AG customer engagements, working both off-site and on-site, leveraging automated solution. This role is the primary technical and operational SME for automation, integration and playbook development. This role works in conjunction with the Cyber Engineering, Cyber Defense, Platforms & Architecture and Service Delivery Governance teams to deliver successful outcomes as agreed between Help AG and its customers.

Responsibilities

• Build, integrate and orchestrate end to end automation. Integrate new logging sources and build playbooks to properly triage and respond to security incidents while reducing the time needed to analyze each event.
• Develop simple and complex playbooks and simple/custom connectors integrating with various technology.
• Implement and configure SOAR for new shared customer onboarding and dedicated tenant setup.
• Identify challenges of customer security teams, and assist security teams with SOAR best practices.
• Deploy and manage FORTISOAR VM \xe2\x80\x93 dedicated, on prem and cloud (multitenant).
• Design, develop and architect FORTISOAR in the customer environment.
• Setting up dashboard, reports, incident war room, and roaster management.
• Experience in defining Jinja Filters, functions, and conditions.
• Support pre-sales, sales and business development of new and existing Services.
• Support the service transition process; work with peers to effectively transition customers and infrastructure into operations.
• Work pro-actively and collaboratively with peers seeking mutually beneficial outcomes.
• Support rapid and effective detection, mitigation, containment, and response to cyber security incidents leveraging integrations with, and capabilities of, infrastructure platforms, tools, assets under management, and non-managed customer controls.
• Creation, optimization and documentation of processes, procedures, and workflow; tracking and reporting of SLAs, KPIs and OLAs
• Initiate, support and manage incidents, problems, issues, risks and compliance activities; 24x7 on-call for critical or urgent activities as required.

Qualifications & Skills

• Qualifications: Degree in Computer Science, Information Systems, Electrical Engineering, or a closely related degree.
• Depth of skills in at least three of the following areas: Security Controls Operations, Cyber Incident Response, Cyber Security Detection, Managed Services Integration, Cyber Threat Intelligence, Threat Hunting.
• 7+ year of experience in SOAR or automation domain preference is given to FORTISOAR candidate.
• Experience in developing FORTISOAR connectors & playbooks.
• Experience in integrating various technologies with SOAR platform.
• Exposure to SIEM (Splunk, Sentinel, Qradar, Securonix) systems is strongly preferred.
• NSE 6 Forti SOAR administrator and NSE 7 Forti SOAR design and development (architect) certification exam is preferred. If you don\xe2\x80\x99t have certificate, you need to get the certification within 3 months of joining.
• Experience in the design, implementation, maintenance, and optimization of playbooks for detection, protection, containment and mitigation of cyber security related threats and incidents.
• Strong scripting and integration skills, in languages such as Python, GO, Kusto/KQL, PowerShell.
• Expert skills in information security technologies (e.g. SIEM, NGFW, CTI, WAF) as well as IT systems, including Office 365, service management tools, and the interfaces provided by IT & security systems that can be used for integration, automation and orchestration.

Benefits

• Health insurance with one of the leading global providers for medical insurance.

• Career progression and growth through challenging projects and work.

• Employee engagement and wellness campaigns activities throughout the year.

• Excellent learning and development opportunities.

• Annual flight tickets to home country.

• Inclusive and diverse working environment.

• Flexible/hybrid working environment.

• Open door policy.

About Us

Help AG is the cybersecurity arm of e& enterprise (formerly Etisalat Digital) and provides leading enterprise businesses across the Middle East with strategic consultancy combined with tailored information security solutions and services that address their diverse requirements, enabling them to evolve securely with a competitive edge.

Present in the Middle East since 2004, Help AG was strategically acquired by e& (formerly Etisalat Group) in 2020, hence creating a cybersecurity and digital transformation powerhouse in the region.

Help AG has firmly established itself as the region\'s trusted IT security advisor by remaining vendor-agnostic, trustworthy, independent, and maintaining its focus on all aspects of cybersecurity. With best of breed technologies from industry-leading vendor partners, expertly qualified service delivery teams and a state-of-the-art consulting practice, Help AG delivers unmatched value to its customers by strengthening their cyber defenses and safeguarding their business.

Help AG