Blackpoint Cyber

Compensation

Full Description

Blackpoint Cyber is the leading provider of world-class cybersecurity threat hunting, detection and remediation technology. Founded by former National Security Agency (NSA) cyber operations experts who applied their learnings to bring national security-grade technology solutions to commercial customers around the world, Blackpoint Cyber is in hyper-growth mode, fueled by a recent $190m series C round. Company Culture On this team, we value high-quality execution, ownership, and strong morals. With us, principles are never tested, and we are proud to always do right by our customers. If you’re a driven professional with a passion for learning and contributing towards the best, then Blackpoint welcomes you. Our team is energetic and collaborative, maintaining a high-performance culture and enabling growth through overcoming challenges in the modern cyberthreat landscape. Key Responsibilities: Security Automation Development: Design, develop, and maintain security automation tools and scripts to enhance the SOC's operational efficiency and response capabilities. Utilize Python and other scripting languages to create custom solutions for integrating and automating security processes. API Integration and Report Automation: Leverage various APIs to automate data retrieval and report generation, enhancing the SOC's analytical and reporting capabilities. Work with internal and external data sources to streamline data aggregation and analysis. Continuous Improvement and Innovation: Regularly investigate attacks and collaborate with Security Operations to understand the threat landscape across the customer base to identify opportunities for improving detection logic and automation. Stay updated with the latest cybersecurity trends and technologies to continually innovate and improve SOC processes. Cross-functional Collaboration: Collaborate with SOC analysts to understand their needs and develop automation solutions that support their workflows. Work closely with other technical teams to integrate security automation tools with existing systems and platforms. Qualifications: 2+ years of experience in coding, development, or scripting, with a specific focus on cybersecurity applications, Python Strongly Preferred. Proven experience in security automation and tool management within a SOC environment. 1+ years of experience in an information security role, with a preference for experience in SOC, Threat Hunting, or DFIR. Knowledge of data structures, algorithms, and data analysis techniques. Proficiency in leveraging APIs for data retrieval and automation. Familiarity with Elasticsearch, OCSF, Kibana query languages, or similar queries. Excellent communication skills for effectively summarizing and presenting findings and trends. Bonus Technical Skills: General understanding of solutions such as superblocks, n8n, tines, utilizing webhooks, and configuring tools like Hive or SOAR platforms. Experience in network/system administration, preferably in a cybersecurity context. Scripting experience with PowerShell is a plus. Familiarity with Power BI, Excel, or similar tools for data analysis and visualization. Desirable: Bachelor’s Degree in Computer Science, Engineering, or related technical discipline. Advanced skills in Kibana, including dashboard creation and data visualization. Background in network/system administration. Proficiency in Python Scripting. Blackpoint Cyber welcomes and encourages applications from qualified individuals of all races, colors, religions, sex, sexual orientation, gender identity or expression, national origin, age, marital status, or any other legally protected status. We are committed to equality of opportunity in all aspects of employment. For eligible employees in the US, Blackpoint offers competitive Health, Vision, Dental, and Life Insurance plans, a robust 401k plan, Discretionary Time Off, and other minor perks.