Automation Engineer (Cybersecurity)

TL;DR

Automation Engineer (Cybersecurity/SOAR): Designing and developing SOAR playbooks and automating incident response workflows for the Congressional Budget Office with an accent on Microsoft Sentinel and Azure Logic Apps. Focus on integrating security tools, optimizing MTTD/MTTR, and building custom automation pipelines for SOC operations.

Location: Remote (Must hold an active Public Trust clearance)

Company

hirify.global provides specialized IT and cybersecurity support services for government agencies.

What you will do

• Design, develop, and maintain SOAR playbooks using Microsoft Sentinel and Azure Logic Apps.
• Automate incident response workflows, including phishing, malware containment, and endpoint isolation.
• Integrate Microsoft Sentinel with Microsoft Defender XDR and other identity, network, and cloud security tools.
• Develop custom automation workflows and enrichment pipelines aligned with Sentinel data models and schema requirements.
• Maintain audit logging, chain-of-custody, and compliance controls within automated workflows.
• Develop reporting on automation effectiveness, specifically focusing on MTTD and MTTR improvements.

Requirements

• Active Public Trust clearance.
• 5+ years of experience in cybersecurity engineering, automation, or SOAR development.
• Hands-on expertise with Microsoft Sentinel and Azure Logic Apps.
• Experience integrating Microsoft Defender XDR (Endpoint, Identity, Cloud).
• Strong scripting skills in Python, PowerShell, or similar languages.
• B.S. in Computer Science, Information Technology, or a related field.

Nice to have

• Cybersecurity certifications such as GCIA, GCIH, CISSP, or CEH.
• Microsoft Sentinel or Microsoft security platform certifications.
• Cloud security certifications (e.g., AWS security).
• Privacy certifications (e.g., CIPP/US, CIPM).