Tech Stack

Description

You will lead the design and implementation of automated security response actions, build AI-assisted workflows, and develop custom integrations to streamline incident response and threat detection. Collaborate with cross-functional teams to ensure effective log ingestion and evangelize automation across the organization.

Requirements

• 5+ years in security engineering or software development
• Proven experience with SOAR platforms (Torq, Splunk SOAR, etc.)
• Strong proficiency in Python for API integration and data processing
• Experience integrating AI/LLM into operational workflows
• Deep understanding of REST APIs and SOC incident response lifecycles

Responsibilities

• Design, build, and maintain automated security playbooks and workflows using SOAR platforms
• Develop AI-assisted workflows and integrate LLMs into security processes
• Write custom scripts and integrations (Python, REST APIs) to bridge security tools
• Identify and automate manual security tasks to free up analyst time
• Mentor junior team members and document standards and procedures