onsite
SOAR Engineer - L3Harris
Software Engineer
Lead the design, deployment, and optimization of SOAR solutions to automate incident response across cyber domains, leveraging Python, APIs, and cloud services to enhance detection, investigation, and remediation workflows.
About the role
Key Responsibilities
- Architect, develop, and maintain SOAR pipelines that integrate threat intelligence feeds, security tools, and custom playbooks.
- Write and refactor Python scripts to automate investigation, triage, and containment actions across multiple security platforms.
- Collaborate with security analysts to translate operational requirements into scalable playbooks and workflows.
- Implement and manage API integrations with SIEM, SOAR, and third‑party threat intel services.
- Monitor and tune automation performance, ensuring high reliability and minimal false positives.
- Document solutions, create runbooks, and provide training to security teams.
Requirements
- 3+ years of experience in security automation or SOAR engineering.
- Experience with cloud platforms (AWS, Azure, or GCP) and API development.
- Excellent problem‑solving skills and ability to work cross‑functionally.