[Remote] Senior Security Automation Engineer (SOAR) - Mid-Atlantic region (Remote)
Note: The job is a remote job and is open to candidates in USA. GuidePoint Security is a rapidly growing cybersecurity solutions provider that helps organizations minimize risks through trusted expertise and services. They are seeking a Senior Security Automation Engineer to design and build security automation workflows, enhancing operational efficiency in security operations. This role requires a deep understanding of security operations and automation platforms to optimize security posture for top organizations.Responsibilities5+ years in security operations with a working understanding of how a SOC functions end to end (alert triage, escalation, incident response, case management)3+ years specifically designing and building security automation/orchestration workflowsHands-on experience on at least one SOAR/automation platform; Tines, Torq, or Cortex XSOAR preferredProficiency integrating security and IT systems via REST APIs, webhooks, and JSONScripting ability, primarily Python, for custom logic, data transforms, and handling within automated workflowsWorking knowledge of the tooling categories automations connect to: SIEM, EDR/XDR, ticketing (ServiceNow, Jira), threat intelligence, and email securityAbility to decompose a manual security process into a reliable automated workflow, including error handling, conditional logic, and secure runsFamiliarity using LLMs in a development and automation context, including AI assisted or agentic coding tools such as Claude Code or Codex; exposure to MCP based integrations is a plusAbility to independently scope automation requirements with clients and translate them into a build planPlatform or vendor certifications: Tines, Torq, Cortex XSOAR; or SIEM/EDR certs (such as Splunk, Microsoft Sentinel, CrowdStrike)Cloud experience (AWS or Azure) and familiarity with cloud native security toolingPrior delivery experience in a consulting, professional services, or MSSP environmentDetection engineering exposure in areas such as detections-as-code (DaC), Sigma, or similarVersion control and automation-as-code practices (Git or similar repo controls)Skills5+ years in security operations with a working understanding of how a SOC functions end to end (alert triage, escalation, incident response, case management)3+ years specifically designing and building security automation/orchestration workflowsHands-on experience on at least one SOAR/automation platform; Tines, Torq, or Cortex XSOAR preferredProficiency integrating security and IT systems via REST APIs, webhooks, and JSONScripting ability, primarily Python, for custom logic, data transforms, and handling within automated workflowsWorking knowledge of the tooling categories automations connect to: SIEM, EDR/XDR, ticketing (ServiceNow, Jira), threat intelligence, and email securityAbility to decompose a manual security process into a reliable automated workflow, including error handling, conditional logic, and secure runsFamiliarity using LLMs in a development and automation context, including AI assisted or agentic coding tools such as Claude Code or Codex; exposure to MCP based integrations is a plusAbility to independently scope automation requirements with clients and translate them into a build planPlatform or vendor certifications: Tines, Torq, Cortex XSOAR; or SIEM/EDR certs (such as Splunk, Microsoft Sentinel, CrowdStrike)Cloud experience (AWS or Azure) and familiarity with cloud native security toolingPrior delivery experience in a consulting, professional services, or MSSP environmentDetection engineering exposure in areas such as detections-as-code (DaC), Sigma, or similarVersion control and automation-as-code practices (Git or similar repo controls)BenefitsRemote workforce primarily (U.S. based only, some travel may be required for certain positions, working on-site may be required for Federal positions)Group Medical Insurance options: Zero Deductible PPO Plan (GuidePoint pays 90% of the premium for employees and 70% for family plans (spouse/children/family) or High Deductible Health Plan with HSA (GuidePoint pays 100% of the employees premiums and 75% for family plans (spouse/children/family). If you choose the High Deductible / HSA plan, GPS will contribute in 4 equal quarterly installments: ($850 per EE annually / $1750 per family annually (includes spouse/children/family options)Group Dental Insurance: GuidePoint pays 100% of the premium for employees and 75% of family plans12 corporate holidays and a Flexible Time Off (FTO) programHealthy mobile phone and home internet allowanceEligibility for retirement plan after 2 months at open enrollmentPet Benefit OptionCompany OverviewGuidePoint Security provides trusted cybersecurity expertise, solutions, and services that help organizations minimize risk. It was founded in 2011, and is headquartered in Reston, Virginia, USA, with a workforce of 1001-5000 employees. Its website is https://www.guidepointsecurity.com/.