Secureworks® (NASDAQ: SCWX) is a global cybersecurity leader that protects customer progress with Secureworks® Taegis™, a cloud-native security analytics platform built on 20+ years of real-world threat intelligence and research, improving customers’ ability to detect advanced threats, streamline and collaborate on investigations, and automate the right actions.
Role Overview
On a personal level, in this role you will grow your knowledge and experience with advanced technologies for both cloud and cyber security. This allows you to mature your understanding of threat actor behaviour and learn how cyber criminals threaten our customers – and how we can protect them. In this role you will be working closely with Secureworks experts that will support you in your mission.
In this role you will be managing lab environments that includes development, configuration, deployment and supporting of these to support global Presales programs. The role will also be responsible for helping to design, build, implement, and document lab processes and procedures, and to collaborate with other Lab stakeholders throughout Secureworks.
Role Responsibilities
- Develop, configure, & deploy new lab simulation environments to provide a world-class demo environment;
- Explore the Taegis XDR product and many of the 3rd party technology integrations, to build, maintain and optimize and own the best example of our state-of-art security analytics platform Taegis XDR demo environment;
- Support the Proof of Value Specialist Team with Proof-of-Value deployment activities, including configuring and troubleshooting Taegis integrations, investigating customer PoV data emulating a Security Operations (SecOps);
- Wherever possible, automate Labs and other Presales tasks activities to facilitate scaling these capabilities to Secureworks Channel Partners and Resellers;
- Develop new Use Cases in our lab environments to demonstrate the value of the Taegis XDR and VDR solutions;
- Partner with other lab and simulation stakeholders throughout Secureworks, including CTU, Incident Response, SecOps, Secureworks Adversary Group, to explore more ways to replicate real world attacks;
- Track the current status of lab engagements and operational statistics for reporting;
- Analyze and identify areas of improvement with management and related operations processes, procedures, and documentation;
- Collaborate with Product Engineering on new capabilities and configuration options;
- Understand the current CyberSecurity Platform application infrastructure;
- Define, document, and perform best practices and strategies regarding lab deployment and maintenance;
- Troubleshoot distributed systems;
- Work effectively in a fast-paced and constantly changing environment.
Requirements
- AWS Certifications and hands-on experience
- Microsoft Azure certifications and hands-on experience
- Basic level of experience with Cyber Security (EDR, network, cloud)
- Minimum of 2 years scripting experience with Python, Bash, PowerShell and Yaml
- Minimum of 1 year experience with Infrastructure as Code (Terraform)
- Minimum of 1 year expierence with building continuous integration CI/CD pipelines, Git version control and container management control (e.g. Kubernetes, docker)
- Minimum of 1 year of TCP/IP networking experience
- Strong troubleshooting skills and mindset
Preferred Skills
- GCP certifications and experience
- 1 year of hands-on experience (Admin & User) with Linux (RHEL, CentOS, Ubuntu, etc.)
- 1 year of hands-on experience with administrating Windows servers and domains
- Knowledge of enterprise logging for OS, applications & various security technologies
- Experience with building or maintaining cloud-native applications
- Experience with deploying custom web applications
- Experience with Microsoft O365 management
- Experience with penetration testing tools