Lead Cyber Security Automation Engineer

As a Lead Cyber Security Automation Engineer at T. Rowe Price you will leverage some of the industry's leading technology to help defend our firm and our stakeholders against an evolving cyber threat landscape. You would be playing an integral role in developing our automated defensive capabilities by creating and supporting playbooks, scripts and other automated tools using our SOAR platform. You will be working alongside other talented security professionals in our Cyber Security Operations Group and will join our effort to defend against malicious actors rapidly and efficiently. If you are someone with experience as a security automation engineer or simply have a knack for efficiently solving security-related problems using automation and orchestration, then we'd love to hear from you. 

Responsibilities

• Providing guidance and expertise on best practices around SOAR capabilities and development 

• Working with stakeholders directly to build, design, deliver, re-write, and maintain efficient, reusable, and reliable security automations.  

• Integrating other security platforms with our SOAR to create a reliable backbone for our automated defensive capabilities. 

• Reviewing, debugging, and resolving technical issues throughout the SDLC. 

• Keeping up with the latest and greatest tools and techniques for combatting security threats. 

 

Qualifications

Required: 

• Leverages working knowledge of cyber security operations (Incident Response and Threat Intelligence) to work directly with stakeholders to design, build, and maintain efficient and reliable security automations. 

• Extensive experience developing directly in Palo Alto XSOAR is highly desirable. 

• Experienced with troubleshooting within a hybrid (on-prem + cloud) environment, with strong networking and system administration skills. 

• 3+ years scripting experience working with languages like Python and/or JavaScript. 

• Experience working with third-party integrations and APIs. 

• Serve in an afterhours on-call capacity, monitoring and responding to critical alerts, as required. 

Preferred:

• Excellent communication skills with the ability to present and simplify technical details to a non-technical audience would be preferred. 

• Understanding and awareness of any potential impact actions may have on the firm's broader business. 

FINRA RequirementsFINRA licenses are not required and will not be supported for this role.

Work FlexibilityThis role is eligible for hybrid work, with up to three days per week from home.