SOAR Engineer
United States - Remote
⚠️ We'll shut down after Aug 1st - try foo🦍 for all jobs in tech ⚠️
Xantrion
Xantrion is an established IT firm in the Bay Area that provides IT support services to SMBs. If you are looking for an IT company, contact our team today.
Xantrion is a leading managed security service provider on a mission to empower mid-sized businesses with technology and cybersecurity peace of mind. We are building a stellar team of technology experts who love helping our clients be the best they can be.
Joining Xantrion's Security and Reliability team means working with a group of people who are passionate about safeguarding our clients. Our 24/7 Cybersecurity and Systems Operations Center (CSOC) provides continuous monitoring, detection, and response services. Our cybersecurity engineering and consulting teams work together to deliver a full suite of cybersecurity services.
This is a contract position (6 months) and is 100% remote with the option to work from our office in Lafayette, CA.
About the position
As a SOAR engineer, you will assist the CSOC by building security tool integrations and automations for the SOAR platform that will enable the CSOC to respond and investigate more effectively and efficiently. Our SOAR platform is the core of our internal alert management system.
The candidate should have experience working well in small teams, being flexible by performing multiple roles, and have a solid knowledge of networking, cybersecurity, and coding. This position will also involve collaborating to define engineering requirements and priorities. The SOAR Engineer position reports to the Security and Compliance Manager.
You will make an impact in the first 30 days by:
Joining Xantrion's Security and Reliability team means working with a group of people who are passionate about safeguarding our clients. Our 24/7 Cybersecurity and Systems Operations Center (CSOC) provides continuous monitoring, detection, and response services. Our cybersecurity engineering and consulting teams work together to deliver a full suite of cybersecurity services.
This is a contract position (6 months) and is 100% remote with the option to work from our office in Lafayette, CA.
About the position
As a SOAR engineer, you will assist the CSOC by building security tool integrations and automations for the SOAR platform that will enable the CSOC to respond and investigate more effectively and efficiently. Our SOAR platform is the core of our internal alert management system.
The candidate should have experience working well in small teams, being flexible by performing multiple roles, and have a solid knowledge of networking, cybersecurity, and coding. This position will also involve collaborating to define engineering requirements and priorities. The SOAR Engineer position reports to the Security and Compliance Manager.
You will make an impact in the first 30 days by:
- Working with management and security analysts to prioritize the engineering backlog.
- Developing automation workflows and system integrations to increase efficiency and quality of security operations.
- Collaborate with stakeholders to manage the engineering backlog, including researching, updating, and collecting requirements for work items.
- Write, test, and maintain automation workflows within SOAR platform.
- Build API-based integrations between tools that streamline, simplify, and improve operational efficiencies.
- Author and maintain documentation for all code, integrations, and workflows.
- Work cross-functionally with other members and teams within the entire Xantrion organization.
- 5+ years of experience in cybersecurity, information technology, or a related field.
- Strong programming skills in Python or PowerShell languages.
- Strong Application Programming Interface (API) integration skills.
- Strong understanding of computer networking and cybersecurity fundamentals.
- Experience with SOAR platforms (e.g., Tines, Torq, Chronicle, Splunk, XSOAR) preferred.
- Strong understanding of a variety of security tools and technologies (EDR, SIEM, Vuln Mgmt., etc.).
- Experience administering Microsoft Azure, Amazon Web Services (AWS), or Google Cloud Platform (GCP).
- Strong analytical and problem-solving skills.
- Ability to work effectively in a team-oriented environment.
- Excellent organizational, writing, and communication skills.
- Self-starter with the ability to work independently, proactively take ownership of work.
- Proven ability to manage projects, meet deadlines, and achieve high levels of quality.
- Relevant training and certifications (e.g., CISSP, OSCP, CEH, CySA+, Security+) are preferred.
- Pay Rate $70 - $90/hr.
- Flexible remote work schedule
Job stats:
6
2
0
Category:
Security Engineering Jobs
Tags: APIs Automation AWS Azure CEH CISSP Cloud Compliance CSOC EDR GCP Monitoring OSCP PowerShell Python SIEM SOAR Splunk XSOAR
Perks/benefits: Flex hours
Regions:
Remote/Anywhere
North America
Country:
United States
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Senior Cybersecurity Engineer jobsSenior Security Analyst jobsSenior Information Security Analyst jobsSystems Administrator jobsSenior Cloud Security Engineer jobsInformation System Security Officer jobsCyber Security Specialist jobsSecurity Operations Engineer jobsSenior Product Security Engineer jobsInformation Security Manager jobsSenior Network Security Engineer jobsInformation System Security Officer (ISSO) jobsSenior Information Security Engineer jobsSecurity Specialist jobsSecurity Consultant jobsSenior Cyber Security Engineer jobsChief Information Security Officer jobsInformation Systems Security Engineer jobsSenior Software Engineer jobsNetwork Engineer jobsIT Security Engineer jobsCyber Threat Intelligence Analyst jobsCybersecurity Specialist jobsSecurity Operations Analyst jobsSoftware Engineer jobs
EDR jobsSecurity assessment jobsBash jobsEncryption jobsTS/SCI jobsThreat detection jobsSDLC jobsRMF jobsTerraform jobsIDS jobsSplunk jobsSQL jobsITIL jobsMalware jobsTop Secret jobsCompTIA jobsIPS jobsForensics jobsFinance jobsSOC 2 jobsOWASP jobsDocker jobsActive Directory jobsGIAC jobsClearance Required jobs
CRISC jobsOSCP jobsMITRE ATT&CK jobsDoDD 8570 jobsHIPAA jobsIntrusion detection jobsTCP/IP jobsVPN jobsCCSP jobsZero Trust jobsSOAR jobsDNS jobsIT infrastructure jobsJavaScript jobsAnsible jobsUNIX jobsNIST 800-53 jobsJira jobsKPIs jobsIndustrial jobsBanking jobsMachine Learning jobsSANS jobsData Analytics jobsSOX jobs