Cyber Security Automation Engineer

Role: Cyber Hygiene Automation Engineer

Location: Miami, Florida

Duration: 6-month contract + extensions

Position Overview

We are seeking a highly motivated and experienced Cyber Hygiene Automation Engineer to join our Business Information Security Office Cyber Hygiene team. This role is crucial in maturing our security posture by driving automation across our cyber hygiene monitoring processes. The ideal candidate will possess deep expertise in scripting, security tooling, data analysis, and an eagerness to explore and implement Artificial Intelligence (AI) and Machine Learning (ML) techniques to enhance detection and response capabilities.

Key Responsibilities

• Automation and Tool Development
• Design, develop, and maintain automated scripts and playbooks (using Python, PowerShell, or equivalent) to continuously monitor, assess, and report on organizational cyber hygiene metrics (e.g., patching status, configuration compliance, endpoint security agent health, access controls).
• Integrate various security and IT management tools (e.g., vulnerability scanners, endpoint detection and response (EDR) systems, configuration management databases (CMDBs)) to create a unified, automated cyber hygiene dashboard and reporting mechanism.
• Develop and manage APIs and integrations for seamless data flow between security tools and automation platforms (e.g., SOAR, custom-built solutions).
• Drive the transition from manual, periodic checks to real-time, event-driven hygiene monitoring and automated remediation triggers.
• AI/ML Integration and Enhancement
• Research, prototype, and implement AI/ML models to improve the efficacy and efficiency of cyber hygiene monitoring. This includes, but is not limited to:
• Predictive modeling for identifying systems most likely to drift out of compliance or fail critical hygiene checks.
• Anomaly detection in hygiene-related data streams to quickly identify unusual configuration changes or security tool malfunctions.
• Natural Language Processing (NLP) for categorizing and prioritizing remediation efforts based on security advisory content.
• Work closely with Data Science and Engineering teams to operationalize AI/ML-driven hygiene insights.
• Cyber Hygiene Monitoring and Support
• Oversee the day-to-day operation and tuning of existing cyber hygiene monitoring systems.
• Perform root cause analysis for recurring hygiene failures and work with asset owners to implement long-term, systemic fixes.
• Develop and maintain documentation (runbooks, architecture diagrams, standard operating procedures) for all automated monitoring processes and tools.
• Provide subject matter expertise and support to internal teams on best practices for maintaining security controls and meeting compliance requirements.
• Regularly report on the organization's cyber hygiene posture, highlighting key risks and the impact of automation efforts.

Required Qualifications and Key Skillset for this Role

• Bachelor's degree in Computer Science, Information Security, or a related technical field, or equivalent practical experience.
• 5+ years of experience in Information Security, with a focus on Security Operations, GRC, or Security Engineering.
• Strong programming/scripting proficiency (e.g., Python, Go, PowerShell) and experience with version control systems (Git).
• Hands-on experience integrating security tools via APIs (REST, SOAP).
• Demonstrable experience with public cloud platforms (AWS, Azure, or GCP), security controls, and automation (e.g., Terraform, CloudFormation).
• Solid understanding of common cyber hygiene domains (Vulnerability Management, Configuration Management, Identity and Access Management, EDR health).
• Experience developing or implementing machine learning models for security or IT operational use cases.
• Experience with Security Orchestration, Automation, and Response (SOAR) platforms (e.g., Splunk Phantom, Palo Alto XSOAR).
• Certifications such as CISSP, GCIH, GCSA, or related automation/cloud security credentials.
• Hands-on with industry security frameworks (e.g., NIST CSF, ISO 27001, CIS Benchmarks).
• Experience with big data technologies and security data lakes (e.g., Elastic Stack, Splunk, Snowflake).