Senior SOAR Developer/Engineer in United States at Jobgether

This position is posted by Jobgether on behalf of a partner company. We are currently looking for a Senior SOAR Developer/Engineer in the United States.

This role offers the opportunity to shape and advance enterprise-scale security automation within a fast-evolving cybersecurity environment. You will lead the design and implementation of Security Orchestration, Automation, and Response (SOAR) solutions across multiple modern platforms, helping security operations teams streamline detection, investigation, and response workflows. Working in a highly technical and collaborative setting, you will build automation frameworks that directly improve threat response speed and accuracy. The position involves close interaction with security analysts, engineers, and stakeholders to optimize SOC performance and reduce operational burden. You will leverage scripting, cloud security knowledge, and automation tools to build scalable security solutions. This is a high-impact role for someone passionate about cybersecurity engineering and automation innovation.

• Design, build, and maintain SOAR automations and case management workflows across platforms such as Splunk SOAR, Palo Alto XSOAR, Microsoft Sentinel, Tines, Torq, and others
• Develop automation playbooks and case management templates to support security analysts in investigation and incident response
• Engineer and optimize SOC-focused security content and automation capabilities
• Write and maintain scripts in Python, Bash, PowerShell, Perl, or Java, including use of regular expressions for data parsing and automation
• Collaborate with security teams to integrate threat intelligence, detection engineering, and response workflows
• Support cloud and on-prem log ingestion and automation across AWS, Azure, and GCP environments
• Prioritize and independently manage multiple automation and integration projects from design through delivery
• Contribute to the continuous improvement of SOC efficiency, detection accuracy, and response speed

• 3–5+ years of experience in security engineering or cybersecurity automation roles
• Hands-on experience with at least one SOAR platform (e.g., Splunk SOAR/Phantom, Palo Alto XSOAR, Microsoft Sentinel, Tines, Torq, CrowdStrike Fusion, XSIAM, SentinelOne HyperAutomation, Google SecOps/Chronicle)
• Strong scripting skills in Python, Bash, PowerShell, Perl, or Java
• Solid understanding of SOC operations, incident response, and security workflows
• Familiarity with MITRE ATT&CK framework, threat modeling, and detection engineering principles
• Experience working with cloud security logging and telemetry (AWS, Azure, GCP)
• Strong problem-solving skills with the ability to work independently in a fast-paced environment
• Bachelor’s degree in a related field or equivalent professional experience
• Strong communication skills and ability to collaborate across technical teams

• Fully remote work within the United States
• Competitive compensation package
• Comprehensive medical, dental, and vision insurance plans with employer contributions
• Flexible Time Off (FTO) and paid holidays
• 401(k) retirement plan eligibility with employer support
• Home internet and mobile phone allowance
• Health Savings Account (HSA) contributions (for eligible plans)
• Pet benefits program
• Strong culture of mentorship, collaboration, and technical growth
• Opportunity to work with leading cybersecurity tools and enterprise clients