ISSE (SOAR Engineer)
Job Location:
Job Location:
Washington, DC - USA
Monthly Salary:
Not Disclosed
Monthly Salary:
Posted on:
18 days ago
Posted on:
Vacancies:
1 Vacancy
Vacancies:
Job Summary
Job Title: ISSE (SOAR Engineer)
Location: Washington DC
Clearance: Top Secret required will need to process for a Q clearance
Education/Experience: A relevant bachelors degree or equivalent and 14 years of relevant experience. With a relevant masters degree 12 years of relevant experience is acceptable. With a PhD 10 years of relevant experience is required.
Job Description:
Design and implement SOAR playbooks for incident response and security operations
Integrate SIEM EDR and other security tools into SOAR platforms (e.g. Splunk SOAR Swimlane)
Automate repetitive tasks such as alert triage enrichment and ticket creation
Support incident response teams by improving response speed and consistency
Develop and maintain APIs scripts and integrations (Python preferred)
Fine-tune playbooks based on threat intelligence and operational feedback
Document workflows processes and automation logic
Experience integrating SIEM tools (Splunk ELK etc.)
Strong scripting skills (Python preferred)
Familiarity with incident response processes and SOC operations
Understanding of MITRE ATT&CK framework
Location: Washington DC
Clearance: Top Secret required will need to process for a Q clearance
Education/Experience: A relevant bachelors degree or equivalent and 14 years of relevant experience. With a relevant masters degree 12 years of relevant experience is acceptable. With a PhD 10 years of relevant experience is required.
Job Description:
Design and implement SOAR playbooks for incident response and security operations
Integrate SIEM EDR and other security tools into SOAR platforms (e.g. Splunk SOAR Swimlane)
Automate repetitive tasks such as alert triage enrichment and ticket creation
Support incident response teams by improving response speed and consistency
Develop and maintain APIs scripts and integrations (Python preferred)
Fine-tune playbooks based on threat intelligence and operational feedback
Document workflows processes and automation logic
Experience integrating SIEM tools (Splunk ELK etc.)
Strong scripting skills (Python preferred)
Familiarity with incident response processes and SOC operations
Understanding of MITRE ATT&CK framework
