CBO - Automation Engineer in Washington, District of Columbia at cFocus Software Incorporated
NewJob Function: EngineeringEmployment Type: Full-Time
cFocus Software Incorporated
Washington, District of Columbia, 20001, United States
Posted on
New job! Apply early to increase your chances of getting hired.
Explore Related Opportunities
Miscellaneous Computer Occupations jobs near me in Washington, D.C.Jobs near me in Washington, D.C.Miscellaneous Computer Occupations jobs
Job Description
cFocus Software seeks an Automation Engineer to join our program supporting the Congressional Budget Office (CBO). This position is remote. This position requires a Public Trust clearance.
Qualifications:
Duties:
Qualifications:
- Active Public Trust clearance
- B.S. Computer Science, Information Technology, or a related field
- 5+ years of experience in cybersecurity engineering, automation, or SOAR development
- Hands-on experience with Microsoft Sentinel and Azure Logic Apps
- Experience integrating Microsoft Defender XDR (Endpoint, Identity, Cloud)
- Strong scripting skills (Python, PowerShell, or similar)
- Experience with API integrations and automation frameworks
- Knowledge of incident response workflows and SOC operations
- Understanding of MITRE ATT&CK and detection engineering
- Experience with cloud environments (Azure, AWS)
- Preferred certifications include but are not limited to
- GCIA, GCIH, CISSP, CEH, or equivalent cybersecurity certifications
- Microsoft Sentinel or Microsoft security platform certifications
- Relevant cloud security certifications (e.g., AWS security)
- Privacy certifications (e.g., CIPP/US, CIPM) where applicable
Duties:
- Design, develop, and maintain SOAR playbooks using Microsoft Sentinel (Logic Apps)
- Automate incident response workflows (phishing, malware containment, credential compromise, endpoint isolation)
- Integrate Sentinel with Microsoft Defender XDR and other security tools (identity, endpoint, network, cloud)
- Develop custom automation workflows and enrichment pipelines
- Ensure automation aligns with Sentinel data model and schema normalization requirements
- Maintain audit logging, chain-of-custody, and compliance controls within automated workflows
- Support automation for alert triage, ticketing, and escalation processes
- Perform continuous improvement of playbooks based on incident trends and threat intelligence
- Provide quarterly tabletop exercises and playbook validation
- Develop reporting on automation effectiveness (MTTD, MTTR improvements)
- Collaborate with SOC analysts and engineers to operationalize automation use cases
Scan to Apply
Just scan this QR code to apply from your phone.
Job Location
Washington, District of Columbia, 20001, United States
Frequently asked questions about this position
Similar Jobs In Washington, District of Columbia
Hot Job
Systems Engineer
American Association Of Airport Executives
Alexandria, Virginia
Urgently Hiring
Technology Architect - Cyber
In-Q-Tel
McLean, Virginia
New
Sr. Consultant
ESRI, Inc
Vienna, Virginia
New
Senior Systems Engineer
Belay Technologies
Fort Meade, Maryland
New
Lead Systems Engineer
QBE Federal
Dahlgren, Virginia
Apply NowYour application goes straight to the hiring team
By submitting your application, you understand and agree to JobTarget's
Terms of Use and
Privacy Policy.