Security Incident Response Orchestration Lead

Bank of America Merrill Lynch

Denver, CO, US
Base: $98,400.00 - $160,000.00 annualized; bonus/e...
8+ years security operations experience
4+ years splunk soar and tines hands-on
Deep understanding of incident response workflows
The role is responsible for defining and guiding the technical execution of enterprise-scale security automation using Splunk SOAR and Tines

Job Summary

  • The role is responsible for defining and guiding the technical execution of enterprise-scale security automation using Splunk SOAR and Tines.
  • Candidates will partner with over 15 security operations teams to identify high-impact automation opportunities and reduce MTTR.
  • Bank of America offers industry-leading benefits, discretionary incentives, and a commitment to an inclusive workplace culture.

Matching Summary

The role is responsible for defining and guiding the technical execution of enterprise-scale security automation using Splunk SOAR and Tines.

Salary

Base: $98,400.00 - $160,000.00 annualized; Bonus/Equity: Discretionary incentive eligible; Benefits: Industry-leading benefits and paid time off

Skills & Requirements

Must-have

  • 8+ years Security Operations experience
  • 4+ years Splunk SOAR and Tines hands-on
  • Deep understanding of incident response workflows
  • Experience integrating SOAR with MS Graph and CrowdStrike
  • Design automation with control and auditability

Nice-to-have

  • Enterprise-scale SOAR program background
  • Python and REST API proficiency
  • AI-enabled security operations experience
  • RAG-based architecture knowledge
  • SOC leadership or security architecture background

Key Requirements

  • 8+ years in Security Operations or Incident Response
  • 4+ years hands-on experience with Splunk SOAR (Phantom) and Tines
  • Strong integration experience with ServiceNow, CrowdStrike, and Tanium

Work Rights

Not specified

Tailored Resume

Cover Letter