Social network you want to login/join with:
ARM | Security Engineering and Automation Mgr, Cambridge
Client:
ARM
Location:
Cambridge
Job Category:
Other
EU work permit required:
Yes
Job Views:
5
Posted:
21.01.2025
Expiry Date:
07.03.2025
Job Description:
Role Overview:
Utilising knowledge of security operations, incident response, and detection engineering, you will be responsible for the identification, development and implementation of all security automation and activity within Cyber Defence Operations (CDO) and between CDO and wider Enterprise Security teams.
The successful candidate will be proficient in automation and orchestration tools (e.g., SOAR platforms, scripting languages like Python, PowerShell) and have experience with integrating security tools (e.g., SIEM, EDR, firewalls) APIs, and Case Management tools for data enrichment.
Responsibilities:
* Develop and build the automation, logging, and detection strategy to improve the CDO's efficiency, scalability, and incident response capabilities.
* Design, implement, and maintain automated workflows and playbooks to streamline CDO operations, including incident response, threat hunting, cyber threat intelligence and vulnerability management.
* Collaborate with CDO analysts to identify repetitive tasks and automate them to improve operational efficiency.
* Partner with CDO, IT, and development teams to align automation initiatives with business and security objectives.
* Deliver training and mentorship to CDO analysts on automation tools, scripting, and tooling.
* Continuously evaluate automation solutions for performance, reliability, and scalability, making improvements, as necessary.
* Create performance indicators and reporting mechanisms to measure the impact of automations on CDO performance and risk reduction for Arm.
* Communicate automation progress, challenges, and benefits to internal customers, including Enterprise Security leadership and other business units.
* Collaborate with third-party vendors and service providers to leverage automation opportunities and ensure successful integrations.
Required Skills and Experience:
* Demonstrated ability in cybersecurity, with at least 3 years in a leadership or senior technical role in security operations and/or security software development.
* Solid understanding of security operations, automation standard processes, and threat intelligence lifecycle.
* Experience with cloud security tools and platforms (e.g. Azure, AWS, Google Cloud) and their integration into SOC operations.
* Vendor-specific certifications for SOAR platforms (e.g., Sentinel SOAR, Splunk SOAR, Palo Alto Cortex XSOAR).
* Experience running large-scale security automation projects, including planning, execution, and customer communication.
“Nice To Have” Skills and Experience:
* Ability to develop and implement long-term automation strategies aligned with security operation objectives.
* Ability to translate technical concepts into clear, actionable insights for technical and non-technical partners.
* Meticulous focus on ensuring accuracy, reliability, and security in automation workflows.
* Consistent record of implementing automation and integration solutions in a SOC or similar environment.
In Return:
At Arm, we are guided by our core beliefs that reflect our creative culture and guide our decisions, defining how we work together to surpass ordinary and shape extraordinary.
Accommodations at Arm:
At Arm, we want our people to Do Great Things. If you need support or an accommodation to Be Your Brilliant Self during the recruitment process, please email [emailprotected]. All accommodation requests will be treated with confidentiality.
Hybrid Working at Arm:
Arm’s approach to hybrid working is designed to create a working environment that supports both high performance and personal wellbeing. We believe in bringing people together face to face while recognizing the value of flexibility.
Equal Opportunities at Arm:
Arm is an equal opportunity employer, committed to providing an environment of mutual respect where equal opportunities are available to all applicants and colleagues.
#J-18808-Ljbffr