If you’re passionate about innovation and love working in an environment where you can constantly improve and adopt new technologies to drive business results, then Nationwide’s Information Technology team could be the place for you! At Nationwide®, “on your side” goes beyond just words. Our customers are at the center of everything we do and we’re looking for associates who are passionate about delivering extraordinary care.
We are seeking a highly experienced and dynamic Cybersecurity Automation Engineer to lead our Cybersecurity Operations Security Orchestration, Automation and Response (SOAR) efforts. The ideal candidate will have practical experience in multiple scripting languages, including python, as well as developing playbooks for security operations enrichment of alerts, orchestration and automation of actions and responses. We have a strong preference for expertise in Cyber Security and/or Incident Response. This role requires a strategic thinker with excellent communication skills and the ability to drive continual improvement in a fast-paced environment.
Key Responsibilities:
Providing guidance and expertise on best practices for SOAR capabilities and development
Working with stakeholders directly to build, design, deliver, optimize, and maintain efficient, reusable, and reliable security automations
Integrating other security platforms with our SOAR to create a reliable backbone for our automated defensive capabilities
Creates enrichment of cyber security detection and alerts for ongoing prevention of threats
Uses an efficiency mindset for incident response to design and implement automation and orchestration for the enrichment and handling of cyber security events
Plans and conducts team activities to enrich detection and prevention controls
Leads and works on initiatives as part of the overall cyber operations strategy
Preferred Qualifications:
Leverages working knowledge of cyber security operations (Incident Response and Threat Intelligence) to work directly with stakeholders to design, build, and maintain efficient and reliable security automations.
3+ years scripting experience working with languages like Python and/or JavaScript.
Experience working with third-party integrations and APIs.
Experience working with and processing JSON formatted data
Experience developing directly in Palo Alto XSOAR/XSIAM is highly desirable.
Excellent communication skills with the ability to present and simplify technical details to a non-technical audience would be preferred.
Understanding and awareness of any potential impact actions may have on the firm's broader business.
Compensation grade G5
Job Description Summary
If you’re enthusiastic about delivering secure technology solutions to support a company providing extraordinary care to its customers, then Nationwide Technology is the place for you. Nationwide's industry-leading technology workforce embraces an agile work environment and a collaborative culture to deliver outstanding solutions and results. If that sounds like something you aspire to, we want to hear from you!
As a Cyber Operations professional, you'll be on the front line, protecting Nationwide's members and data! You will be immersed with incident response, cyber strategy and guidance, defense optimization and scanning and exploitation. We'll count on you to provide enterprise services in forensic investigation, attack and penetration, vulnerability scanning and response, cyber defense, security intelligence, security operations and infrastructure risk management.
Job Description
Key Responsibilities:
Leads or responds to complex cyber incidents using industry recognized methodology, e.g., PICERL (Preparation, Identification, Containment, Eradication, Recovery and Lessons Learned).
Creates uplift of cyber security detection and alerts for ongoing prevention of threats.
Applies secure software and systems engineering practices throughout the delivery lifecycle to ensure our data and technology solutions are protected from threats and vulnerabilities.
Uses an efficiency mindset for incident response to design and implement automation and orchestration for the enrichment and handling of cyber security events.
Manages and supports vulnerability management via tools, processes, and proactively identifies vulnerabilities in the environment.
Plans and conducts team activities to enrich detection and prevention controls.
Plans and delivers proactive cyber activities (purple teaming, threat hunting, red teaming, etc.) with full understanding of the MITRE ATT&CK framework.
Identifies critical log sources and system events used for creation and tuning of cyber security detections.
Maintains awareness of current cyber threat landscape to perform evaluation, enrichment and dissemination for action to protect Nationwide members and environment.
Leads and works on initiatives as part of the overall cyber operations strategy.
May perform other responsibilities as assigned.
Reporting Relationships:Reports to Manager, Risk Leader or above.
Typical Skills and Experiences:
Education: Undergraduate studies in cyber security, management information systems, engineering, math, computer science, data analytics or comparable experience and education strongly preferred. Graduate studies in cyber security, computer science or a related field are a plus.
License/Certification/Designation:Preferred certifications include: Certified Information Systems Security Professional (CISSP), Cisco Certified Network Associate (CCNA), Certified Ethical Hacker (CEH), GIAC Certified Intrusion Handler (GCIH), Digital Forensics Investigation: EnCase Certified Examiner (EnCE) certification, GIAC Strategic Planning Policy and Leadership (GSTRT), GIAC Security Expert (GSE), Certified Cloud Security Professional (CCSP), AWS Certified Cloud Practitioner, AZ500.
Experience:Typically, six years of experience in technology, with four years in cyber security. Experience using Windows and Linux/Unix operating systems, administration and tools. Successful candidates will also have experience with network configurations, protocols, scripting, web application security, network security, firewalls and network topology from both physical and logical viewpoints, scripting in PowerShell, Python, Bash and Windows Batch.
Knowledge, Abilities and Skills:Ability to make decisions, recommendations and manage work processes. Aptitude to influence, build partnerships and set priorities. Excellent communication skills to interact with all levels of associates, senior management and/or vendors. Insurance and/or financial services industry knowledge a plus.
Other criteria, including leadership skills, competencies and experiences may take precedence.
Staffing exceptions to the above must be approved by the hiring manager’s leader and Human Resource Business Partner.
Values:Regularly and consistently demonstrates Nationwide Values.
Overtime Eligibility:Exempt (Not Eligible)
Working Conditions:Hybrid to normal office environment.
ADA: The above statements cover what are generally believed to be principal and essential functions of this job. Specific circumstances may allow or require some people assigned to the job to perform a somewhat different combination of duties.
Benefits
We have an array of benefits to fit your needs, including: medical/dental/vision, life insurance, short and long term disability coverage, paid time off with newly hired associates receiving a minimum of 18 days paid time off each full calendar year pro-rated quarterly based on hire date, nine paid holidays, 8 hours of Lifetime paid time off, 8 hours of Unity Day paid time off, 401(k) with company match, company-paid pension plan, business casual attire, and more. To learn more about the benefits we offer, click here.
Nationwide is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive culture where everyone feels challenged, appreciated, respected and engaged. Nationwide prohibits discrimination and harassment and affords equal employment opportunities to employees and applicants without regard to any characteristic (or classification) protected by applicable law.
Smoke-Free Iowa Statement: Nationwide Mutual Insurance Company, its affiliates and subsidiaries comply with the Iowa Smokefree Air Act. Smoking is prohibited in all enclosed areas on or around company premises as well as company issued vehicles. The company offers designated smoking areas in which smoking is permitted at each individual location. The Act prohibits retaliation for reporting complaints or violations. For more information on the Iowa Smokefree Air Act, individuals may contact the Smokefree Air Act Helpline at 888-944-2247.
