Trav Banner


Cybersecurity Operations Center Technologist (SOAR SOC)

Hartford, Connecticut

Who Are We?

Taking care of our customers, our communities and each other. That's the Travelers Promise. By honoring this commitment, we have maintained our reputation as one of the best property casualty insurers in the industry for over 160 years. Join us to discover a culture that is rooted in innovation and thrives on collaboration. Imagine loving what you do and where you do it.

Compensation Overview

The annual base salary range provided for this position is a nationwide market range and represents a broad range of salaries for this role across the country. The actual salary for this position will be determined by a number of factors, including the scope, complexity and location of the role; the skills, education, training, credentials and experience of the candidate; and other conditions of employment. As part of our comprehensive compensation and benefits program, employees are also eligible for performance-based cash incentive awards.

Salary Range

$81,400.00 - $134,200.00

Target Openings

1

What Is the Opportunity?

Travelers has an exciting opportunity for an experienced Cybersecurity professional to join the Cybersecurity Operations team. If you are passionate about Cybersecurity and willing to take on new and complex challenges as a member of creative and collaborative team in a fast-paced learning environment, this may be the right opportunity for you!

This role will directly support the continuous maturation of our Cybersecurity Orchestration, Automation and Response (SOAR) framework via the development of automated SOC workflows. The ideal candidate will bring a background/experience in a hands-on Cybersecurity role, as well as proficiency in programming and/or scripting in Python, ideally in a structured development environment. Working experience with RESTful APIs, as well as web frameworks such as Django or Flask. Other responsibilities include monitoring, alert triage, investigation, and mitigation/response actions as well as documentation, reporting, and communications of Cybersecurity events.

What Will You Do?

  • Build and maintain automation scripts (playbooks) and associated documentation in support of ongoing tuning of the Security Orchestration and Automated Response tooling. This includes: 
    • Develop, test, document, and implement new or upgraded automations or scripts.
    • Works with Threat Detection and cross-organizational teams to resolve gaps in automated response and resolves deficiencies.
    • Observes and recommends changes to processes and technologies, including automation. Implements with management review.
    • Provide operational support, trouble shooting and maintenance of security-related processes, controls, or products.
    • Provide training and demoing of automation to the end user and SOC, as well as solicit feedback for improvements from end users and SOC management.
  • As part of onboarding and ongoing automation responsibilities, this role will assist in identifying anomalies, malware, exploit attempts, and other attacks using the Security Information and Event Management (SIEM) and SOAR platforms.
    • Participates in SOC investigations to determine root cause of events and understand the role that automation played in the events.
    • Independently analyze and resolve problems of medium to high complexity.
    • Consults with SOC peers to support and resolve cybersecurity events.
    • Ensures events are properly documented for use in dashboard metrics and reports for management and security stakeholders.
  • Provides consultation and guidance to team members and management concerning automation development and gaps in the automation landscape.
  • Participates in other security and enterprise projects as assigned.

What Will Our Ideal Candidate Have?

  • Bachelor's Degree in a STEM (Science, Technology, Engineering, Math) discipline preferred.
  • Three years of relevant experience with Cybersecurity practices, processes, and Cybersecurity event investigation/resolution is preferred.
  • Experience with cybersecurity incident response is preferred.
  • Experience developing or scripting with Python (3.x) required.
  • Familiarity with RESTful API architecture is required, and direct experience with API scripting outputs via Python/curl for integration with disparate systems is highly preferred.
  • Experience with terminal/scripting programs (PowerShell, shell (bash), etc.) is preferred.
  • Experience with web frameworks, such as Django or Flask, is preferred.
  • Experience with query languages such as SQL, SPL, or KQL, is preferred.
  • Experience with other programming languages (Go, Java, JavaScript, etc.) is preferred.
  • Understanding of security concepts, best practices, and emerging trends is required.
  • Proven problem-solving skills including debugging skills, allowing you to determine source of issues in unfamiliar code or systems and the ability to recognize and solve repetitive problems.
  • Skills and experience with data platforms such as Splunk, Hadoop, Elastic, etc., are a benefit.
  • Skills and experience with cloud platforms, such as AWS, Azure, or GCP, is a benefit.
  • Experience providing high-level administrative support with a comprehensive knowledge of specific Cybersecurity methodologies, processes and software packages and a conceptual understanding of other Cybersecurity procedures and policies preferred.
  • Problem Solving and Critical Thinking:
    • Demonstrates sound analytic and diagnostic skills in dealing with programmatic or logic problems, especially with data manipulation.
    • Seeks root cause, either in programmatic occurrences or Cybersecurity event triage.
    • Able to work in an environment in which processes may need to be reimagined or changed. Shows adaptability to operate within the scope of loosely defined or ever-changing Cybersecurity objectives.
    • Breaks a problem down to manageable pieces and implements effective, timely solutions.
    • Once decisions are made, is able and willing to follow and actively implement intended solutions or outcomes.
    • Openly and directly confronts conflict until resolved.
  • Team Orientation:
    • Builds relationships with peers and other departments to achieve objectives, to work as one team and to secure necessary resources not under his/her personal control.
    • Seeks to have a positive, open, and outcome-focused team culture.
    • Able to balance team and individual responsibilities.
    • Exhibits objectivity and openness to others' views.
    • Gives and welcomes feedback, especially on process design or code products.
    • Puts success of team above success of self.
  • Leadership:
    • Supports a distinct business unit or several smaller functions.
    • Responsibilities are assigned with some latitude for setting priorities and decision-making using established policies and procedures.
    • Results are reviewed with next-level manager for clarification and direction before proceeding.
  • Planning and Project Management:
    • Works with the manager and leads in identifying tasks that are most important, establishes clear priorities and understands the larger picture.
    • Anticipates and effectively responds to changes in workload and resources.

What is a Must Have?

  • High school diploma or equivalent required.
  • Three years of work experience within Computer Science or a related field required.

What Is in It for You?

  • Health Insurance: Employees and their eligible family members - including spouses, domestic partners, and children - are eligible for coverage from the first day of employment.
  • Retirement: Travelers matches your 401(k) contributions dollar-for-dollar up to your first 5% of eligible pay, subject to an annual maximum. If you have student loan debt, you can enroll in the Paying it Forward Savings Program. When you make a payment toward your student loan, Travelers will make an annual contribution into your 401(k) account. You are also eligible for a Pension Plan that is 100% funded by Travelers.
  • Paid Time Off: Start your career at Travelers with a minimum of 20 days Paid Time Off annually, plus nine paid company Holidays.
  • Wellness Program: The Travelers wellness program is comprised of tools and resources that empower you to achieve your wellness goals. In addition, our Life Balance program provides access to professional counseling services, life coaching and other resources to support your daily life needs. Through Life Balance, you're eligible for five free counseling sessions with a licensed therapist.
  • Volunteer Encouragement: We have a deep commitment to the communities we serve and encourage our employees to get involved. Travelers has a Matching Gift and Volunteer Rewards program that enables you to give back to the charity of your choice.

Employment Practices

Travelers is an equal opportunity employer. We value the unique abilities and talents each individual brings to our organization and recognize that we benefit in numerous ways from our differences. 


If you are a candidate and have specific questions regarding the physical requirements of this role, please send us an email so we may assist you.


Travelers reserves the right to fill this position at a level above or below the level included in this posting.

To learn more about our comprehensive benefit programs please visit http://careers.travelers.com/life-at-travelers/benefits/.


About Travelers

The Travelers Companies, Inc. (NYSE: TRV) is a leading property casualty insurer selling primarily through independent agents and brokers. The company's diverse business lines offer its global customers a wide range of coverage in the auto, home and business settings. A component of the Dow Jones Industrial Average, Travelers has more than 30,000 employees and generated revenues of approximately $25 billion in 2010.