Cybersecurity SOAR Integration Engineer - 6 Month Internship

Description du poste:

Job Description

Join our Security Operations Center (SOC) Team, a team of four engineers within the Cybersecurity Department. You will work in a dynamic environment, gaining key skills in security automation and incident response while becoming familiar with the banking and finance threat landscape.
Under the supervision of the Security Operation Manager, you will take part in the following projects:
* Connector Development: Developing Python-based connectors to integrate security tools (SIEMs, firewalls, EDR, IAM, threat intelligence platforms) with our SOAR platform using Python 3.9+, REST APIs, and standard protocols.
* API Integration & Data Normalization: Designing REST APIs and webhook handlers for bi-directional communication between systems. Transforming security data from heterogeneous sources into unified data models.
* Technical Documentation: Writing clear technical documentation for integrations, deployment procedures, API specifications, and troubleshooting guides.
* Collaboration: Working closely with the Playbook Engine Developer Intern to define standard connector interfaces and ensure seamless integration with automation workflows

Profil requis du candidat:

Qualifications

* Good proficiency in Python
* Experience with async programming or concurrent execution
* Basic understanding of REST APIs, HTTP protocols, and webhooks
* Knowledge of JSON, YAML, and data serialization formats
* Interest in cybersecurity and incident response
* Experience with version control (Git)
Nice-to-Have Skills
* Experience with SOAR platforms (Splunk SOAR, Cortex XSOAR, etc.)
* Familiarity with security tools (Splunk, QRadar, Chronicle, CrowdStrike)
* Knowledge of authentication protocols (OAuth, API keys, mTLS)