Security SOAR Engineer

Benefits:

Competitive salary

Location
Fully Remote
Nationwide candidates accepted
Onsite presence in South Carolina preferred as needed

Experience Level
Senior Level (5 or more years of relevant security automation experience)

Role Overview
The Security Architect – Consultant serves as a senior security orchestration, automation, and response (SOAR) engineer supporting enterprise-wide security operations. This role focuses on designing, developing, and optimizing automated security workflows, integrations, and playbooks within a centralized SOAR platform. The position works closely with security operations, incident response, engineering teams, and external agencies to improve adoption and effectiveness of shared security services.

Key Responsibilities

Security Automation & Orchestration

Design, develop, and optimize automated security workflows and playbooks
Implement automation logic to respond to security alerts and incidents efficiently
Create custom scripts to extend SOAR platform capabilities beyond out-of-the-box integrations
Continuously improve automation performance and operational effectiveness

Platform Integration & Engineering

Build and maintain integrations between the SOAR platform and security tools including SIEM, EDR, firewalls, and related systems
Support REST-based integrations using APIs, JSON, and YAML
Ensure integrations are stable, scalable, and aligned with enterprise security standards

Documentation, Runbooks & Governance

Document automation workflows, runbooks, troubleshooting steps, and operational procedures
Maintain clear and reusable documentation to support ongoing operations and knowledge transfer
Ensure compliance with enterprise security and operational standards

Collaboration & Stakeholder Engagement

Coordinate with security operations, incident response, and engineering teams to meet program objectives
Engage directly with agency stakeholders to promote adoption of centralized security services
Provide technical guidance and support to improve security service effectiveness across organizations

Monitoring, Reporting & Continuous Improvement

Support dashboard creation and reporting for automation and security operations
Track issues, improvements, and operational metrics
Identify opportunities to enhance automation coverage and incident response maturity

Required Qualifications

Bachelor’s degree in Information Technology, Information Security, or related field, or equivalent professional experience
5 or more years of experience supporting large IT environments or system deployments
5 or more years of experience working with automation platforms or SOAR solutions
Strong scripting and automation skills using Python, Bash, PowerShell, or similar languages
Experience working with REST APIs, JSON, and YAML
Familiarity with the MITRE ATT&CK framework
Experience working in multi-tenant environments or enterprise service delivery models
Strong verbal and written communication skills

Preferred Qualifications

Experience developing automations within the Cortex XSOAR platform
Knowledge of security monitoring use cases and incident response operations
Experience supporting multi-agency or large enterprise security programs
CISSP, CISA, CISO, or equivalent advanced security certifications
Additional security certifications such as CEH, OSCP, or GPEN
Vendor certifications related to SOAR or automation technologies
Candidates located in or near Columbia, South Carolina

Core Skills & Attributes

Strong analytical and problem-solving mindset
Ability to work independently with minimal supervision
High attention to detail and process quality
Strong customer service orientation for agency-facing engagements
Adaptability and ability to quickly learn new tools and environments
Collaborative approach with a willingness to support and mentor team members

This is a remote position.

Similar jobs

Leasing Professional - Copper Hills

Greystar

Albuquerque, United States

4 days ago

Term of use Privacy policy