• We are looking for a Lead Security Operations Engineer to design, implement, and lead our Security Orchestration, Automation, and Response (SOAR) platform. In this role, you’ll be the technical leader responsible for building and optimizing our security automation capabilities
• You will work with a diverse set of technologies, including various security tools, APIs, and cloud services, to streamline our security operations and enhance our incident response efficiency. Your expertise will directly contribute to safeguarding Take-Two and its labels systems, networks, and data
• You will work with Take-Two’s Information Security teams, reporting to the Director of Security Operations Engineering
• SOAR Platform Management: Lead the design, development, and maintenance of SOAR playbooks, workflows, and integrations with other security tools
• Automation and Optimization: Identify and implement automation opportunities to improve the speed and accuracy of security operations and incident response
• Technical Leadership: Act as a domain expert for SOAR, providing technical guidance, mentorship, and support to the security team
• Collaboration and Strategy: Partner with other security teams to ensure SOAR capabilities align with the overall security strategy
• Documentation and Reporting: Create and maintain comprehensive documentation for workflows and integrations, and develop reports to measure program success
• Change Management and Maintenance: Assist with SOAR tool migrations, document all system changes, and stay ahead of the latest SOAR and automation trends

Benefits

• Medical (HSA & FSA)/Dental/Vision
• Game Release Events
• Company Parties, Monthly Socials, and Team Challenges
• Free Games
• Employee Discount Programs
• Fitness Allowance
• Charitable Giving Platform with Company Match
• Learning & Development
• In-House Wellness Program
• Commuter Benefits
• Employee Stock Purchase Plan
• 401(k) with Company Match- Communication Skills: Excellent written and verbal communication skills, with the ability to present technical information clearly to both technical and non-technical audiences
• Analytical Skills: The ability to analyze complex security challenges, find opportunities to automate repetitive manual tasks, and develop data-driven solutions that enhance efficiency and accelerate incident response
• Technical Expertise: Deep expertise in designing, building, and maintaining automated security workflows and playbooks using a SOAR platform to integrate and orchestrate security tools like SIEM, EDR, and threat intelligence platforms
• Tool Proficiency: Hands-on experience with a leading SOAR platform (Palo Alto Networks Cortex XSOAR, Tines or Splunk Enterprise Security) coupled with advanced scripting skills in Python to create custom integrations and sophisticated automation workflows
• Experience: 5+ years’ experience as a SOAR Engineer. Previous experience as a Security Engineer or as a Security Operations analyst is a plus
• Certifications: Relevant industry certifications such as GCED, GCIH, GMON, CEH, etc. or other certifications from organizations like ISC2 or CompTIA
• Scripting Skills: Proficiency in programming and scripting languages common to security such as Python, Go, Bash, or Powershell, Javascript
• Security Frameworks: Knowledge of security frameworks including MITRE Att&CK, NIST, etc
• Leadership Experience: Prior experience leading a small team or a project