Security Architect – SOAR Security Automation Consultant 26-04702

Job Title: Security Architect SOAR / Security Automation Consultant
Location: Remote (Preference for candidates local to Columbia SC or surrounding areas)
Duration: 12 Months

Job Description:

We are seeking an experienced Security Automation and SOAR Engineer Consultant to support enterprise security operations within a large multi-agency environment. This role focuses on designing developing and optimizing security orchestration automation and response capabilities across enterprise security platforms.

The ideal candidate will have strong hands-on experience in security automation integration engineering and incident response support with the ability to collaborate directly with security operations and engineering teams.

Key Responsibilities:

• Design develop and optimize security automation workflows and playbooks
• Build and maintain integrations between SOAR platforms and enterprise security tools (SIEM EDR firewalls etc.)
• Develop custom scripts to extend automation capabilities (Python PowerShell Bash etc.)
• Improve and optimize existing incident response automation logic
• Document runbooks processes and troubleshooting guides for SOAR operations
• Collaborate with SOC Incident Response and engineering teams to support security operations
• Support dashboarding reporting and visibility into security automation performance
• Engage with agency stakeholders to promote adoption of centralized security services
• Provide ongoing support for multi-agency enterprise security environments

Required Skills & Experience:

• 5 years of experience with SOAR or security automation platforms
• Strong experience in enterprise IT/security environments (large-scale deployments)
• Hands-on experience with automation platforms (especially Cortex XSOAR preferred)
• Strong scripting skills: Python PowerShell Bash or similar
• Deep understanding of REST APIs JSON and YAML
• Experience supporting security monitoring and incident response workflows
• Familiarity with MITRE ATT&CK framework
• Experience working in multi-tenant or multi-agency environments

Education / Certifications:

• Bachelors degree in IT Cybersecurity or related field (or equivalent experience)
• 5 years of relevant experience may substitute for education requirement
• Preferred certifications:
  • CISSP CISA or equivalent
  • CEH OSCP GPEN (or similar)
  • Vendor certifications in SOAR/security automation tools

For more details reach at