RemoteLeaf Logo
Log in Sign up

Security Automation Engineer

52 minutes ago
India
Full-time
Mid Level
Security Engineer
DevOps and Infrastructure
Cybersecurity DevSecOps JSON PowerShell Python REST API SIEM SOC Splunk
Apply Now
ProArch

ProArch

At ProArch, we help our clients accelerate growth and mitigate risk with IT services, cybersecurity services, application development, cloud computing, and data analytics. ProArch was founded on the belief that a future where change is ‘business as usu...

Internet Software & Services
251-1K
Founded 2006
View All Jobs 18

Description

  • Design, develop, implement, and maintain SOAR playbooks and automation workflows for SOC operations.
  • Build scalable orchestration for alert triage, automated enrichment, threat intelligence correlation, incident response, containment, identity investigations, case management, and reporting.
  • Implement and maintain integrations between SOAR platforms and security tools using APIs, webhooks, SDKs, and custom connectors.
  • Develop automation logic that improves SOC efficiency, reduces analyst fatigue, and accelerates MTTR and mean time to resolve.
  • Support SOAR platform administration, including upgrades, change management, testing, governance, RBAC, operational maintenance, and environment hardening.
  • Work with SOC managers, team leads, analysts, and consultants to identify automation opportunities and improve investigation, escalation, detection, and reporting workflows.
  • Assist in scaling SOC operations through automation, AI-driven initiatives, and incident response automation strategies.
  • Coordinate with internal stakeholders and external vendors on implementation, troubleshooting, optimization, feature enablement, testing, and deployment.
  • Maintain technical documentation, workflow diagrams, integration references, and operational runbooks.
  • Support cross-functional cybersecurity projects and operational improvements in a globally distributed environment.

Requirements

  • Bachelor’s degree or graduation in Computer Science, Information Technology, Cybersecurity, Engineering, or a related technical field is mandatory.
  • 3–5 years of overall cybersecurity experience.
  • Proven hands-on experience with SOAR platforms in enterprise or MSSP environments.
  • Strong experience designing and implementing automation workflows from scratch.
  • Experience supporting Security Operations Center (SOC) environments; prior SOC Analyst experience is highly preferred.
  • Experience working in Managed Security Services Provider (MSSP) environments is preferred.
  • Experience supporting or collaborating with US-based teams and vendors is preferred.
  • Strong hands-on experience with SOAR technologies; experience with Torq SOAR is preferred.
  • Experience integrating security tools using REST APIs, JSON, webhooks, Python, PowerShell, or scripting/automation frameworks.
  • Familiarity with SIEM platforms and alert correlation logic, including Microsoft Sentinel and Defender XDR.
  • Experience with ticketing systems, preferably Datto Autotask.
  • Understanding of incident response workflows, SOC operations, detection engineering, security orchestration, threat intelligence, authentication mechanisms, and identity-based security workflows.
  • Understanding of endpoints, cloud, identity, and email security ecosystems, including Microsoft Defender for Endpoint, Defender XDR, Defender for Identity, Defender for Office 365, Defender for Cloud Apps, Purview, Entra ID, CrowdStrike Falcon, and Graph API.
  • Relevant cybersecurity or automation-focused certifications are an added advantage, such as Security+, CySA+, GCIH, SC-200, AZ-500, SOAR platform certifications, Splunk, or Microsoft certifications.
  • Experience implementing AI-driven SOC workflows or AI orchestration in cybersecurity operations is preferred.
  • Knowledge of security operations metrics, optimization strategies, governance, and change management is preferred.
  • Familiarity with DevSecOps or infrastructure automation concepts is preferred.
  • Strong verbal and written communication, documentation, collaboration, troubleshooting, and stakeholder coordination skills are required.
  • Ability to work independently in a remote-first, multicultural, fast-paced MSSP environment and manage multiple priorities simultaneously.
  • Primary alignment with USA Eastern Time business hours and permanent remote work from India are required.

Benefits

  • Permanent remote working opportunity within India.
  • Flexible working model based on operational requirements and project demands.
  • Primary alignment to USA Eastern Time business hours with schedule flexibility when needed.
  • Career Pathways support for professional growth and progression.
  • Work-life harmony with encouragement to focus on time outside of work.
  • Inclusive, respectful, and collaborative team culture.
  • Employee appreciation programs that recognize exceptional contributions.
  • Opportunities to work on meaningful, cross-functional projects with global impact.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Nebius

IoT & OT Network Engineer Associate

Nebius 51-250 Internet Software & Services

Nebius is hiring a Junior IoT & OT Network Engineer to support secure connectivity and network security for IoT, OT, and corporate environments within its Cyber Security organization.

Israel Full-time Entry Level Embedded Systems Engineer Security Engineer
DNS IoT Linux Network Security TCP/IP Wireshark
37 minutes ago
Label Your Data

Head of Security

Label Your Data 51-250 Internet Software & Services

Label Your Data is hiring a Head of Security to build and lead its standalone security function, owning security operations, strategy, and maturity while collaborating with the group security team.

Czech Republic Hungary Poland Romania Slovakia Full-time Senior Security Engineer
Cybersecurity SIEM
37 minutes ago
Anduril Industries

Senior Linux Systems Engineer, Edge Compute and Communications - Active Clearance Required

Anduril Industries 1K-5K Aerospace & Defense

Anduril Industries is hiring a Senior Linux Systems Engineer to support sensitive classified defense programs by building and maintaining tactical edge computing infrastructure for UAS products.

United States Full-time Senior Security Engineer Systems Engineer
$170k-$210k
Active Directory Bash Linux PowerShell
52 minutes ago
Ensono

Expert Solution Architect

Ensono 1K-5K IT Services

Ensono is seeking an experienced Solution Architect to design and modernize secure, scalable AWS and Nutanix-on-AWS hybrid environments that support enterprise cloud migrations and operational resilience.

United States Full-time Senior Cloud Engineer Security Engineer
$151k-$204k
Ansible AWS CI/CD CloudFormation CrowdStrike Linux Splunk Terraform
1 hour, 7 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers