The role is responsible for establishing an enterprise-wide automation function to drive 10X improvements across SOC workflows and incident response processes
Job Summary
The role is responsible for establishing an enterprise-wide automation function to drive 10X improvements across SOC workflows and incident response processes.
Candidates must lead the development of SOAR playbooks and integrate advanced automation capabilities across SIEM, EDR, and cloud-native security tools.
The position requires building a high-performing engineering team while governing standards for automation coding, testing, and version control.
Matching Summary
The role is responsible for establishing an enterprise-wide automation function to drive 10X improvements across SOC workflows and incident response processes.
Skills & Requirements
Must-have
Deep experience with SOAR platforms
Proficiency in Python and PowerShell
Strong SIEM and EDR tooling background
API and webhook integration engineering
AI/ML-enabled security automation experience
Nice-to-have
Lean Six Sigma Green or Black Belt certification
GCP or Azure cloud certifications
Experience with Microsoft and Google security stacks
Knowledge of CSI frameworks and maturity models
Key Requirements
GIAC certifications (GCTI, GMON, GCIH, GCDA)
Proven leadership of high-performing engineering teams
Experience designing operational workflows and SOPs