Skip to content

Security Automation Engineer

At Northwestern Mutual, we are strong, innovative and growing. We invest in our people. We care and make a positive difference.

We are looking for a highly motivated Security Automation Engineer to join Northwestern Mutual’ s Cybersecurity team. As a member of the Security Automation team, you will play a pivotal role in building and maintaining a balanced and sustainable security automation pipeline with the goal of improving the efficiency, effectiveness and accuracy of detection and response capabilities and reducing manual tasks for the Cybersecurity teams. This role requires a mix of coding skills, systems engineering, and security domain expertise.

Primary Responsibilities:

  • Automate workflows/processes related to security events through SOAR playbooks

  • Design, engineering, deployment, and maintenance of custom automation tools (primarily in Python and PowerShell)

  • Develop integrations with security tools and APIs.

  • Assist with the ongoing enhancement to the organization’s case management system, and actively identify areas of improvement within the processes of our Cybersecurity teams with the goal of decreasing response times, increasing effectiveness and streamlining security operations

  • Maintain and improve the team's products, infrastructure, and technology stack.

  • Assist with the development of dashboards and metrics within the organization’s case management system.

  • Develop and maintain documentation related to the automation of workflows related to detection/response procedures for security events.

Required Skills:

  • 3-5 years of professional development experience using Python.

  • Comfortable with REST API standard methodologies and usage.

  • Hands-on experience with AWS and cloud services configuration and development.

  • Hands-on experience with Linux and Windows systems administration.

  • Hands-on experience with security technologies such as SIEM, firewalls, IDR/IPS, EDR, IAM principles and others.

  • Excellent written and verbal communications skills.

  • Ability to communicate to a technical and non-technical audience.

Preferred Skills:

  • Bachelor’s degree in Computer Science, Cybersecurity, Computer Engineering, Software Engineering, or related field

  • Experience with security automation and orchestration tools and/or software development technologies

  • Experience with Splunk SOAR (Phantom) and Splunk SIEM.

  • Experience with Splunk SPL queries, dashboards, and alerts.

  • Practical experience with automation techniques using PowerShell, Bash, JavaScript, API calls, and regular expressions

  • Additional coding experience in one or more programming languages – Java, C++, Go

  • ServiceNow development experience

  • Experience with DevOps, CI/CD environments, and tooling such as GitLab, GitLab CI, Terraform, Ansible, Kubernetes etc.

  • Experience with network and/or systems administration

  • Experience working in Security Operations, Incident Response, or Penetration Testing

#LI-Post

Grow your career with a best-in-class company that puts our client’s interests at the center of all we do. Get started now!

W e are an equal opportunity/affirmative action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender identity or expression, sexual orientation, national origin, disability, age or status as a protected veteran, or any other characteristic protected by law.

If you work or would be working in Colorado or outside of a Corporate location, please click here for information pertaining to compensation and benefits.


FIND YOUR FUTURE

We’re excited about the potential people bring to Northwestern Mutual. You can grow your career here while enjoying first-class perks, benefits, and commitment to diversity and inclusion.