Senior Security Automation Engineer (SOAR) - Mid-Atlantic region in United States at Jobgether

This position is listed on behalf of a partner company, who manages all applications and next steps. Our partner is looking for a Senior Security Automation Engineer (SOAR) - Mid-Atlantic region based in the United States.

This role sits at the center of modern security operations, focusing on building and scaling automation that transforms how security incidents are detected, triaged, and resolved. You will design intelligent SOAR workflows that connect SIEM, EDR/XDR, ticketing, and threat intelligence systems into seamless automated responses. The position blends hands-on engineering with strategic security operations impact, enabling faster and more reliable incident handling. You will work closely with SOC, engineering, and IT teams to deconstruct manual processes into scalable automation. This is a highly technical and collaborative role where scripting, API integration, and workflow design directly improve organizational security posture. The environment is fast-moving, innovation-driven, and focused on continuous improvement through automation and AI-enabled security operations.

• Design, build, and maintain security automation and orchestration workflows that streamline SOC operations, including alert triage, incident response, and case management
• Integrate security and IT systems such as SIEM, EDR/XDR, ticketing platforms, email security, and threat intelligence tools using APIs, webhooks, and structured data formats
• Develop and optimize automated workflows with robust logic, error handling, and conditional execution to ensure reliability at scale
• Partner with SOC, engineering, and IT teams to translate manual security processes into efficient, automated solutions
• Create and enhance security automation playbooks within SOAR platforms, including platforms such as Tines, Torq, or Cortex XSOAR
• Apply scripting, primarily Python, to build custom logic, data transformation, and workflow enhancements
• Support continuous improvement initiatives by refining detection-to-response processes and improving operational efficiency

• 5+ years of experience in Security Operations with strong understanding of SOC workflows including triage, escalation, and incident response
• 3+ years of hands-on experience building security automation or orchestration workflows in a SOAR environment
• Strong experience with REST APIs, webhooks, JSON, and system integrations across security and IT ecosystems
• Proficiency in Python for scripting, automation logic, and data manipulation
• Experience working with tools such as SIEM, EDR/XDR, and ticketing systems including ServiceNow or Jira
• Ability to break down complex manual processes into scalable and resilient automated workflows
• Familiarity with cloud environments such as AWS or Azure and modern security tooling
• Strong analytical thinking, problem-solving skills, and ability to work independently in a dynamic environment
• Exposure to AI-assisted development tools and automation-driven engineering approaches is a strong plus

• Competitive base salary with performance-based bonus opportunities
• Comprehensive health coverage including medical, dental, and vision insurance
• Remote-first work flexibility with occasional travel depending on assignments
• Paid time off including holidays and flexible PTO policies
• Retirement savings plan eligibility and employer contributions
• Home office support including internet and mobile reimbursement
• Professional development opportunities and access to leading security certifications and training