Automation/SOAR Engineer (Cybersecurity)

TL;DR

Automation/SOAR Engineer (Cybersecurity): Designing and implementing automated workflows and playbooks for the Federal Communications Commission's security operations with an accent on SIEM/EDR integration and alert triage. Focus on automating incident response, optimizing SOC processes, and developing Python/PowerShell scripts to enhance operational effectiveness.

Location: Remote (Must be able to obtain and maintain a US Public Trust clearance)

Company

A software company providing engineering and cybersecurity support programs for the Federal Communications Commission (FCC).

What you will do

• Design, develop, and maintain SOAR playbooks and automated workflows to optimize security operations.
• Integrate SIEM, EDR, vulnerability management, and ticketing systems with SOAR tools.
• Automate incident response, alert triage, and remediation activities to reduce manual effort.
• Develop custom scripts using Python and PowerShell to support diverse automation initiatives.
• Support continuous monitoring, threat detection, and response improvements within the SOC.
• Maintain and update SOPs, playbooks, and technical knowledge base documentation.

Requirements

• Bachelor’s degree in Cybersecurity, IT, Computer Science, or equivalent professional experience.
• Experience with SOAR platforms such as Splunk SOAR or Palo Alto Cortex XSOAR.
• Strong scripting skills in Python, PowerShell, or similar languages.
• Knowledge of SIEM tools, API integration, and security operations workflows.
• Ability to obtain a Public Trust clearance.
• Relevant certifications such as Security+, CySA+, CISSP, or GIAC.