GreenSky Administrative Services LLC

SOAR Engineer

Job Location(s) US-GA-Atlanta
Posted Date 4 months ago(7/22/2024 9:26 AM)
Job ID
2024-4947
# of Openings
1
Category
Information Technology

Overview

Headquartered in Atlanta, Georgia, GreenSky is a leading U.S. financial technology company Powering Commerce at the Point of Sale® for a growing ecosystem of merchants, consumers, and banks. Our highly scalable, proprietary, and patented technology platform enables merchants to offer frictionless promotional payment options to consumers at the point-of-sale, driving increased sales volume and accelerated cash flow. Banks leverage our technology to provide loans to super-prime and prime consumers nationwide. Since our inception over five million U.S. consumers have financed more than $41 billion in commerce through our paperless, real time “apply and buy” technology.

 

Position: SOAR Engineer

 

Location: Atlanta or Remote US

 

Position Overview

GreenSky is looking for a versatile SOAR engineer to support the security operations team and enhance our security capabilities. They should have experience working in modern cloud environments. This Engineer will mainly work with the Security Operations Team to advance operational capabilities by utilizing cloud native capabilities, open source and commercial security tools. They will identify opportunities for improvement and deliver solutions to solve the operational problems through automation or building solutions in the cloud, using open source or commercial solutions. They will support our detection and Incident Response functions by assisting in enhancing our detection capabilities and investigations when Incidents occur. They will support the vulnerability management function by introducing more automation and identifying new capabilities with the engineering team to further mature the function. 

Duties & Responsibilities

· Provide engineering expertise to advance detection, response, vulnerability management and threat intel capabilities

· Build automation capabilities in the cloud and security tools to gain efficiencies

· Lead automation projects and discussions to increase efficiency and productivity

· Monitor alerts and take necessary action

· Leverage cloud native, open source and commercial tools to mature operational capabilities and drive automation

· Build detections and dashboards as needed in the SIEM and assistant in technical investigations when incidents occur

· Partner with Engineering team to advance security capabilities through deployment of new capabilities

· Focus on driving security efficiencies, enabling security team members to work on more advanced tasks.

· Identify gaps in current capabilities and drive efforts to close the gaps

· Maintain up-to-date level of knowledge related to security threats, vulnerabilities and mitigations set forth to reduce attack surface

 

Qualification 

· T-Shaped Engineer with knowledge of Cloud platforms including AWS and Azure

· Experience in working with cloud native security tools and commercial tools including Splunk, MS Defender, Rapid7, Mimecast, Netskope

· Ability to code and script (python, PowerShell, JavaScript etc.) to automate and drive efficiencies in security operations

· Up-to-date understanding of a wide range of incident response, system configuration, vulnerability management and hardening guidelines

· Knowledge of operating system configuration (Windows, Unix, Linux) and networking (DNS, DHCP, routing protocols).

· Ability to analyze event and incident logs and work with SOC and IR teams to assess security events related to malware, vulnerabilities, exploits and kill chain methodology

· Capable of collaborating with internal and external stakeholders to prioritize efforts and work independently towards resolution

- 3-5 years of experience with relevant certifications or degree

 

GreenSky is an equal opportunity employer and will not discriminate against any employee or applicant on the basis of age, color, disability, gender, national origin, race, religion, sexual orientation, veteran status, or any classification protected by federal, state, or local law.

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed