Jr. SOAR Engineer

About The Position

Requirements

• Bachelor’s degree in Computer Science, Cybersecurity, Information Technology, or a related field; or equivalent practical experience.
• Foundational understanding of security operations, incident response, and alert/investigation workflows.
• Basic experience with scripting/automation using languages such as Python, PowerShell, or Bash.
• Basic understanding of APIs, JSON, webhooks, and system integrations.
• Ability to troubleshoot workflow failures and analyze logs, errors, and integration issues.
• Strong written and verbal communication skills and ability to work across technical and non-technical teams.
• Organized, detail-oriented, and able to maintain documentation and follow defined procedures.
• 0–2 years of experience in cybersecurity, security operations, automation engineering, DevOps, or a related technical role.

Nice To Haves

• Familiarity with SIEM, case management, or alerting platforms is preferred.
• Exposure to one or more of the following is preferred: Security tooling integrations, SOAR/SIEM platforms, Incident response processes, Cloud environments, Version control / CI/CD practices.

Responsibilities

• Assist in designing, building, testing, and maintaining security automation workflows and playbooks for common security use cases such as alert enrichment, triage, escalation, notification, and containment.
• Support integration of security and IT tools with the SOAR platform using APIs, connectors, scripts, and documented workflows.
• Work with Security Operations personnel to identify repetitive tasks suitable for automation and help translate analyst workflows into repeatable playbooks.
• Monitor automation health, troubleshoot failed jobs or playbooks, and escalate issues as needed to restore operational effectiveness.
• Assist with incident response activities by supporting automated and semi-automated response actions under approved procedures and change controls.
• Maintain technical documentation for playbooks, integrations, workflows, standard operating procedures, and troubleshooting guides.
• Participate in testing, validation, and continuous improvement of automation content to reduce false positives, improve analyst efficiency, and support consistent response processes.
• Collaborate with Security Ops, Infrastructure, DevOps, and application owners to ensure automation aligns with operational, security, and compliance requirements.
• Support after-hours incident response or on-call activities as required by business need.

Benefits

• Paid days off (i.e. vacation, sick days, bereavement leave)
• Health and Dental plans
• Retirement plans
• Employee and Family Assistance Program (EFAP)
• Employee referral program