Role overview

[8NW] Senior SecOps Incident Response Automation Engineer

Requirements and responsibilities

Readable role content extracted into sections for faster review.

Overview

  • Flexible schedules
  • An authentic work-life balance
  • Payment in US Dollars

Role Responsibilities:

  • Help build and maintain a new SOAR automated response platform using Torq, that supports AI-enabled response and escalations to be routed to on-call personnel at appropriate times.

Role Responsibilities:

  • Build automated SOC response tools, automation programs, incident response workflows, etc.

Role Responsibilities:

  • Perform various Security team tasks as needed.

Role Responsibilities:

  • Be available to support the on-call response team, occasionally on an โ€œas neededโ€ basis during off-hours to respond to potential security incidents.

Required Skills & Qualities:

  • Communication and Negotiation - excellent English fluency/proficiency is required, and candidates must be able to communicate effectively to technical and non-technical stakeholders.

Required Skills & Qualities:

  • SOC response experience (ideally with experience in a fintech industry or another highly regulated industry environment)

Required Skills & Qualities:

  • Experience working as part of a lean team in a fast-paced technical environment or organization.

Required Skills & Qualities:

  • Experience designing, implementing, and tuning SIEM and SOAR findings, including experience configuring advanced automations with cutting-edge tools like Torq, Tines, or similar.

Required Skills & Qualities:

  • Experience in data retrieval, data manipulation, and data reporting, including the following skills:

Required Skills & Qualities:

  • Experience working with APIs (at a minimum, having a strong understanding of APIs, API integrations, the ability to set up API connections, and using APIs to access/retrieve data).

Required Skills & Qualities:

  • Experience with scripting for automation

Required Skills & Qualities:

  • Experience in data management, manipulation, and presentation (using data in Google Sheets, Excel, and databases).

Control work areas:

  • 90% SOC/SIEM/SOAR automation development
  • 5% Join the on-call response team
  • 5% Other

Nice to have:

  • Experience using Python for scripting

Nice to have:

  • Experience with AI/LLM response automation within the area of SOC response, or at minimum, a desire and willingness to learn

Nice to have:

  • Experience with DLP design and tuning

Nice to have:

  • Experience with Panther SIEM
Similar roles

Keep a backup shortlist.

Browse stack
FocusSecOps Incident ResponseRole area
Seniority signalSeniorCandidate level
StackLLM, PythonPrimary skills
Location25 accepted countriesEligibility

Stack

Use these tags to compare similar remote roles.

Location eligibility

Candidates should apply only when their profile country is listed here.

Hiring flow

WithMira shows the role, then sends candidates to the company application.

1Check role fit, stack, and location eligibility in WithMira.
2Open the company application page from the tracked apply link.
3Save the role or subscribe for similar opportunities before leaving.
Apply on company siteCompany siteOpen link