Cybersecurity Automation and Orchestration Lead Engineer

JOB SUMMARY: 

The Cybersecurity Automations Lead Engineer for Caesars is responsible for implementing the Cybersecurity program and strategy at a tactical and operational level (network, infrastructure, applications and databases) to ensure that security controls are functioning efficiently and effectively, more specifically in the realm of security logging, monitoring, alert management, incident handling, vulnerability and configuration management. Furthermore, this position also supports the Cybersecurity Team in doing security research and development, product evaluations, consulting, project support, and any other operational tasks needed to support the overall requirements of the program and strategy. 

The Cybersecurity Automations Engineer provides technical expertise to establish and implement security related standards, procedures, and guidelines appropriate to securing the existing environment in partnership with various properties and Information Technology. The optimal goals are to design and implement controls and processes, risk mitigation techniques, and standardized information security solutions that will allow a sensible balance between risks and business operations.  

Key Functions 

Security Tools Configuration & Operation 

• Provide Level 1 configuration and operational support of the following security tools: 

1. Security Orchestration and Automation Response platform 
2. Enterprise Software Deployment suite 
3. Enterprise Remote Management platform 

• Assist in the identification and implantation of automation opportunities for the Cybersecurity program. 

• Coordinates with stakeholders and internal customers to identify, prioritize, and manage engineering solutions for automation requirements. Maintains and manages a backlog of automation use cases, ensuring timely development, testing and deployment. 

• Architect, design, and implement solutions to automation requirements. 

• Experience with scripting and ability to develop and implement automation solutions. 

Documentation, Reporting & Analytics 

• Disciplined in documentation development and coordination for Peer Review process. 

• Experience with the Software Development Lifecycle and artifacts required for each stage. 

• Demonstrate Communications and reporting skills required to work with senior Information Technology leadership and team members. 

• Employee will be required to report program status, progress, issues, risks, and roadblocks on a weekly basis or more frequently as required. 

• Report regular metrics and statistics about our business and IT environment; analyze trends in security events, activities, etc. to better understand risks, insufficiencies in our solutions, staffing shortages, etc.; reporting security metrics and statistics to senior Information Technology leadership and other key stakeholders such as the Senior Management Team 

Research & Development 

• Providing technical briefings to management and other IT engineers, analysts, project managers, etc.; contributing to the technical understanding and promotion of new and existing information security standards, solutions and tools; serving as a technical communication channel to the SecOps Manager. 

• Assist in providing R&D and consulting support to the Cybersecurity team, IT and business projects as needed. 

Operational Planning & Management 

• Assist with managing the relationship with the SOC and other business units to analyze all security-related events and activities to provide daily, weekly, and monthly reporting of statistics and metrics. 

• Providing input to audit and other assessment requirements from clients, customers, and other third-parties; main SME on IT and business projects. 

• Assisting in the technical, day-to-day tasks as part of the implementation of new processes and tools linked to several key capital projects. 

• Providing understanding of network and system security and influence the IT Teams (as well as the business segments) in integrating security in the design of networks and implementation of systems. 

• Ensure solutions are compliant with Cybersecurity and IT policy and requirements.  Review solutions for vulnerability.  Implement software development best practices. 

Required 

• Bachelor's degree in Computer Science, Business Management, MIS, Information Technology, or similar related cyber disciplines; or equivalent work experience; or equivalent industry certifications 

• At least a minimum of five (5) years of related business experience  

• Familiarity with Project Management concepts and fundamentals 

• Experience with a Security Orchestration, Automation, and Response (SOAR) solution  

• Technical knowledge of business processes and procedures and systems to support it  

• Ability to maximize systems to support business processes, recommend and influence business process changes to maximize use of system  

Preferred 

• Certified training in Security Management, Risk and Compliance Solutions and Practices. CISSP, C-CISO, CISA, CISM, GSEC, CRISC, or related certification(s)