Security Operations – Enterprise Automation Engineer

POSITION SUMMARY

Zoetis, Inc. is the world's largest producer of medicine and vaccinations for pets and livestock.  The Zoetis Tech & Digital (ZTD). Join us at Zoetis India Capability Center (ZICC) in Hyderabad, where innovation meets excellence. As part of the world's leading animal healthcare company, ZICC is at the forefront of driving transformative advancements and applying technology to solve the most complex problems. Our mission is to ensure sustainable growth and maintain a competitive edge for Zoetis globally by leveraging the exceptional talent in India.
At ZICC, you'll be part of a dynamic team that partners with colleagues worldwide, embodying the true spirit of One Zoetis. Together, we ensure seamless integration and collaboration, fostering an environment where your contributions can make a real impact. Be a part of our journey to pioneer innovation and drive the future of animal healthcare.
Zoetis is on the lookout for an Enterprise Security Automation Specialist, a role central to elevating our security operations through technical innovation, integration and automation. The focus is on crafting sophisticated automation frameworks using a variety of tools like Palo Alto and CrowdStrike, alongside Active Directory. This role involves deep technical engagement in automating threat detection, response processes, and security workflows to improve efficiency and efficacy.
The ideal candidate should be adept at scripting and developing customized solutions that seamlessly blend disparate security tools into a cohesive, automated security ecosystem, significantly enhancing operational response and resilience. Top candidates have deep understanding of cybersecurity, various threat vectors, a can-do attitude, proven leadership, communication and collaboration skills, ability to work under pressure, and make timely decisions to fulfill key stakeholder requirements.

POSITION RESPONSIBILITIES
In order of importance, list the primary responsibilities critical to the performance of the position.  It is recommended not to list actual tasks but focus on essential responsibilities that highlight accountability and level of judgment required. Percent of Time (sum of responsibilities  should equal to 100%)

• Oversee and enhance Zoetis' security automation infrastructure, focusing on tools like, Palo Alto, CrowdStrike, Active Directory and Splunk. 10

• Automate the integration and analysis of data from various sources, utilizing scripting and API integrations to detect anomalies and trends, and develop comprehensive dashboards. 10

• Proactively develop new automated solutions based on observed security activities, enhancing threat detection and response capabilities. 10

• Continuously improve and innovate in security automation, emphasizing the development of new techniques and tools. 10

• Forge and maintain cross-departmental relationships to support complex automation processes and improve security workflows. 10

• Review existing runbooks, playbooks, and processes to develop and implement automation strategies that streamline and optimize outcomes, significantly reducing manual efforts. 10

• Develop and monitor key performance indicators to assess and improve the effectiveness of security automation strategies. 10

• Troubleshoot and resolve issues related to data integration and automation, ensuring efficient operation of security tools. 10

• Create technical documentation, including architecture diagrams, technical designs, and standard operating procedures, with a focus on security automation. 10

• Stay adept with evolving security practices, integrating new automation techniques to manage and respond to security events effectively. 10

ORGANIZATIONAL RELATIONSHIPS
Provide the primary groups or key positions that this position will have interaction with as a regular part of the position responsibilities.  Include any external interactions as appropriate.

• Information Security

• Identity & Access Management

• Infrastructure and Applications

• End Users

RESOURCES MANAGED  
Financial Accountability
Indicate the Average Budget or Revenue accountability, as applicable.

N/A

Supervision
Indicate the typical number of Colleagues managed.  Include direct & indirect reports, matrix responsibility and or additional resources (i.e. contingent workers), as applicable.
N/A

EDUCATION AND EXPERIENCE
Indicate the formal education, certification or license required and/or preferred. Include the minimum number of years of relevant experience required for the position (where legally permissible).
Education:
Required – Bachelor's Degree in Cyber Security / Computer Science / Information Systems / or science related field.

• Preferred Certifications –
o CrowdStrike Falcon Administrator
o CrowdStrike Falcon Architect
o Python Programming Certifications
o Microsoft Certified: Azure Security Engineer Associate Network Certified Automation Engineer

• Desired – Master's Degree in Cyber Security / Computer Science / Information Systems / or science related field. CISSP, SANS or similar certifications.
Experience:

• 2-3 years of direct hands-on experience in IT security automation, including familiarity with Palo Alto, Active Directory and Splunk.

• 3+ years direct hands-on experience in a security operations role with an emphasis on automation technologies with real-world use-case development and implementation examples.

• Experience in managing relationships with vendors for security and automation tools, addressing issues in line with organizational objectives.

• In-depth knowledge of attack vectors, exploits, and countermeasures, with experience in frameworks like MITRE ATT&CK, NIST, and CIS.

• Expertise in platform security and administration across multiple systems, such as Windows, Active Directory, Linux/UNIX.

• Experience with large-scale IT projects, understanding the interplay of various roles/teams for project success.

• Knowledge in system architecture and data integration, especially in a security context.

TECHNICAL SKILLS REQUIREMENTS
Indicate the technical skills required and/or preferred, as applicable.

• Highly developed communication and interpersonal skills with the ability to influence through personal credibility, integrity, and professionalism.

• Advanced analytics & machine learning skills.

• Strong proficiency in project management.

• Excellent written and oral communication skills.

• Relentless dedication to customer satisfaction/excellence.

• Strategic and analytical thinking.

• Ability to multitask and work in fast-paced environment.

• Ability to foster collaborative decision making.

• Capable of working both independently and as a team member.

• Fluency in English (written and spoken) mandatory.

PHYSICAL POSITION REQUIREMENTS
Note the physical conditions in which work will be performed, if applicable to the position.  Examples: Lifting, sitting, standing, walking, ability to travel, drive, unusual attendance requirements, weekend work or travel requirements, etc.
Regular working hours are from 11:00 PM to 8: 00 PM IST or 2:00 PM to 11:00pm IST
Sometimes, more overlap with the EST Time zone is required during production go-live.

This description indicates the general nature and level of work expected.  It is not designed to cover or contain a comprehensive listing of activities or responsibilities required of the incumbent.  Incumbent may be asked to perform other duties as required.  Additional position specific requirements/responsibilities are contained in approved training curricula