[Remote] Senior Security Automation Engineer (SOAR) - Mid-Atlantic region (Remote)

Note: The job is a remote job and is open to candidates in USA. GuidePoint Security is a rapidly growing cybersecurity solutions provider that helps organizations minimize risks through trusted expertise and services. They are seeking a Senior Security Automation Engineer to design and build security automation workflows, enhancing operational efficiency in security operations. This role requires a deep understanding of security operations and automation platforms to optimize security posture for top organizations.

Responsibilities

• 5+ years in security operations with a working understanding of how a SOC functions end to end (alert triage, escalation, incident response, case management)
• 3+ years specifically designing and building security automation/orchestration workflows
• Hands-on experience on at least one SOAR/automation platform; Tines, Torq, or Cortex XSOAR preferred
• Proficiency integrating security and IT systems via REST APIs, webhooks, and JSON
• Scripting ability, primarily Python, for custom logic, data transforms, and handling within automated workflows
• Working knowledge of the tooling categories automations connect to: SIEM, EDR/XDR, ticketing (ServiceNow, Jira), threat intelligence, and email security
• Ability to decompose a manual security process into a reliable automated workflow, including error handling, conditional logic, and secure runs
• Familiarity using LLMs in a development and automation context, including AI assisted or agentic coding tools such as Claude Code or Codex; exposure to MCP based integrations is a plus
• Ability to independently scope automation requirements with clients and translate them into a build plan
• Platform or vendor certifications: Tines, Torq, Cortex XSOAR; or SIEM/EDR certs (such as Splunk, Microsoft Sentinel, CrowdStrike)
• Cloud experience (AWS or Azure) and familiarity with cloud native security tooling
• Prior delivery experience in a consulting, professional services, or MSSP environment
• Detection engineering exposure in areas such as detections-as-code (DaC), Sigma, or similar
• Version control and automation-as-code practices (Git or similar repo controls)

Skills

• 5+ years in security operations with a working understanding of how a SOC functions end to end (alert triage, escalation, incident response, case management)
• 3+ years specifically designing and building security automation/orchestration workflows
• Hands-on experience on at least one SOAR/automation platform; Tines, Torq, or Cortex XSOAR preferred
• Proficiency integrating security and IT systems via REST APIs, webhooks, and JSON
• Scripting ability, primarily Python, for custom logic, data transforms, and handling within automated workflows
• Working knowledge of the tooling categories automations connect to: SIEM, EDR/XDR, ticketing (ServiceNow, Jira), threat intelligence, and email security
• Ability to decompose a manual security process into a reliable automated workflow, including error handling, conditional logic, and secure runs
• Familiarity using LLMs in a development and automation context, including AI assisted or agentic coding tools such as Claude Code or Codex; exposure to MCP based integrations is a plus
• Ability to independently scope automation requirements with clients and translate them into a build plan
• Platform or vendor certifications: Tines, Torq, Cortex XSOAR; or SIEM/EDR certs (such as Splunk, Microsoft Sentinel, CrowdStrike)
• Cloud experience (AWS or Azure) and familiarity with cloud native security tooling
• Prior delivery experience in a consulting, professional services, or MSSP environment
• Detection engineering exposure in areas such as detections-as-code (DaC), Sigma, or similar
• Version control and automation-as-code practices (Git or similar repo controls)

Benefits

• Remote workforce primarily (U.S. based only, some travel may be required for certain positions, working on-site may be required for Federal positions)
• Group Medical Insurance options: Zero Deductible PPO Plan (GuidePoint pays 90% of the premium for employees and 70% for family plans (spouse/children/family) or High Deductible Health Plan with HSA (GuidePoint pays 100% of the employees premiums and 75% for family plans (spouse/children/family). If you choose the High Deductible / HSA plan, GPS will contribute in 4 equal quarterly installments: ($850 per EE annually / $1750 per family annually (includes spouse/children/family options)
• Group Dental Insurance: GuidePoint pays 100% of the premium for employees and 75% of family plans
• 12 corporate holidays and a Flexible Time Off (FTO) program
• Healthy mobile phone and home internet allowance
• Eligibility for retirement plan after 2 months at open enrollment
• Pet Benefit Option

Company Overview