Detection & Automation Engineer (Cybersecurity)

TL;DR

Detection & Automation Engineer (Cybersecurity): Leading detection engineering and automating security operations for a large-scale cloud infrastructure with an accent on SOAR implementation and SIEM optimization. Focus on building Python-based playbooks, integrating AI/LLM capabilities into security workflows, and architecting high-fidelity detection rules.

Company

hirify.global is a leading provider of web data collection and proxy infrastructure solutions.

What you will do

• Lead the POC, selection, and deployment of a modern SOAR platform.
• Build API connectors and Python-based playbooks to automate triage and incident containment.
• Own the SIEM by leading data ingestion, parsing, and CIM mapping for corporate, cloud, and product telemetry.
• Integrate AI and LLM capabilities into SOAR workflows to accelerate alert triage and summarize threat data.
• Translate threat intelligence and IR logic into high-fidelity alerts within SIEM and Application logging platforms.
• Ensure seamless log flow and webhook integrations between infrastructure and the security stack.

Requirements

• 3+ years of hands-on experience in Detection Engineering, SecOps, or Security Automation.
• Proven experience building playbooks in SOAR platforms (e.g., XSOAR, Tines, Torq, Splunk SOAR, n8n).
• Strong scripting skills in Python and Bash with deep experience interacting with REST APIs.
• Deep technical expertise in Splunk, including SPL, Dashboards, Data Models, and CIM mapping.
• Solid understanding of Cloud Security (AWS or GCP) and containerized environments (Kubernetes).
• Ability to logically break down manual processes and automate them end-to-end.