Security Incident Response Orchestration Lead
Tasks
- Build and guide integrations across SOAR ecosystems
- Collect value metrics MTTR reduction
- Coordinate SOAR feature execution
- Define security automation architecture
- Design cross platform orchestration solutions
- Develop reusable automation patterns
- Guide security incident response orchestration
- Maintain backlog requirements and acceptance criteria
- Partner with security operations teams on automation opportunities
- Scope and evaluate automation requests
- Serve as escalation point for orchestration failures
- Translate incident response workflows into orchestration
Perks/Benefits
Skills/Tech-stack
AI Enabled Security Operations | AI-enabled | AI-enabled security | Agentic AI | Authentication | BloodHound | CMDB | CrowdStrike Falcon | Detection engineering | Entra ID | Incident Response | M365 Defender | Microsoft Graph | Phantom | Python | RAG | REST API | Security operations | ServiceNow | Splunk SOAR | Tanium | Tines | Vector Database
Education
N/A
Related jobs
-
Security Operations Center Operator Supervisor USD 110K-110KAccess Control | Access control systems | Alarm Monitoring | Control Systems | GenetecMid-level Full TimeBothell, WA, United States2h ago
-
USIEM Elastic Engineer USD 110K-150KAnsible | Beats | Elastic Machine Learning | Elastic SIEM | ElasticsearchRemote workMid-level Full TimeWork from home, VA, United States R3h ago
-
Sr. Information Security Engineer USD 111K-155KAlert triage | Anomaly Detection | Automation and response | Behavioral detection | Cause analysisSenior-level Full TimeJacksonville, FL, United States3h ago
-
Cyber Security Project Engineer USD 108K-171KAccreditation | Android | Android device management | Assessment & Authorization | Assessment and AuthorizationSenior-level Full TimeOther, VA4h ago
-
Manager, Cybersecurity Engineering USD 119K-160KAccess Controls | Change Management | Cloud Security | Cybersecurity | EDRMid-level Full TimeUSA-Texas-Houston6h ago
-
Engineering Analyst, Trust and Safety, Messaging USD 159K-231KCyber Security | Data Analysis | Database Management | Fraud risk | Fraud risk managementMid-level Full TimeKirkland, WA, USA8h ago
-
Ansible | Autoscaling | CI/CD | Cloud Native | ContainerizationSenior-level Full TimeSanta Clara, California, United States R16h ago
-
Senior Software Development Engineer, AWS IAM Data Plane USD 168K-227KAmazon Web Services | Authentication | Authorization | Code review | IAMSenior-level Full TimeSeattle, Washington, USA19h ago
-
Linux System Administrator - AWS Cloud (C2S) USD 86K-181KAWS CloudWatch | AWS IAM | AWS Lambda | Active Directory | Amazon EC2Continuing education | Flexible time off | Healthcare | Learning and development | RetirementMid-level Full Time147 CHANTILLY VA (COMMONWEALTH BUILDING A), …19h ago
-
AI machine learning | API Security | AWS | Azure | CI/CD401k plan | Adoption reimbursement | Disability benefits | Employee assistance program | Employee discountsSenior-level Full TimeUSA:NC:Charlotte / Ibm Dr - Adm:8505 …19h ago
-
Security Operations Center (SOC) Analyst II USD 69K-130KDevOps | Endpoint Management | Event Correlation | Firewall | Incident ResponseMid-level Full TimePewaukee, WI, US19h ago
-
Security Operations Center (SOC) Analyst II USD 69K-130KAnalytics rules | Endpoint Management | Event Correlation | Firewall Management | Incident ResponseCustomer facing managed services | Mentoring support | On-call rotationMid-level Full TimeSpringfield, MO, US20h ago
-
Security Operations Center (SOC) Analyst II USD 69K-130KAnalytics rules | Cybersecurity | Detection engineering | DevOps repositories | Endpoint ManagementCustomer facing managed services | On-call rotationMid-level Full TimeLittle Chute, WI, US20h ago
-
Principal Information Security Engineer USD 120K-178KAI Driven | AI-driven security | AI-driven security tools | Artificial Intelligence | AutomationSenior-level Full TimeRochester, MN, United States21h ago
-
Senior Machine Learning Engineer - Cybersecurity USD 80K-200KAnomaly Detection | Behavioral analytics | Cyber Threat | Cyber Threat Detection | CybersecuritySenior-level Full TimeSan Jose, CA, United States21h ago
-
AWS | Access reviews | Audit Readiness | Business Continuity | CCPASenior-level Full TimeRemote, Remote, United States R21h ago
-
Software Engineer SME (TS/SCI with Poly Required) USD 187K-318KAWS | Apache NiFi | CI/CD | DevOps | ETLSenior-level Full TimeDulles, Virginia, United States21h ago
-
Software Engineer SME (TS/SCI with Poly Required) USD 187K-318KAPI | API Key | Amazon Kinesis | Amazon Web Services | Apache AirflowMid-level Full TimeChantilly, Virginia, United States22h ago
-
Software Engineer SME (TS/SCI with Poly Required) USD 187K-318KAWS | Anaconda | Apache NiFi | Azure | Azure MicroservicesMid-level Full TimeMcLean, Virginia, United States22h ago
-
Associate Information Security Engineer USD 74K-120KAccess Control | Incident Response | Logical Access | Logical Access Control | Network SecurityContinuing education | Dental insurance | FSA | HSA | Hybrid workMid-level Full TimeRochester, MN, United States22h ago
-
Mid-level Full TimeOmaha, NE22h ago
-
API Integration | CI/CD | Frontend Development | Frontend architecture | GraphQLSenior-level Full TimeSanta Clara, California, United States R22h ago
-
Information Security Operations Lead/Manager USD 135K-195KAWS | Access Management | Active Directory | Azure | CASB401k matching | Dental insurance | Employee referral bonus | Flexible work opportunities | HolidaysSenior-level Full TimeCarmel, Indiana, United States22h ago
-
Staff Production Engineer (Cloud Platform & Reliability – Machine Identity Security) - hybrid USD 181K-226KAKS | AWS | Ansible | ArgoCD | AzureSenior-level Full TimeSanta Clara, California, United States R22h ago
-
Mid-level Full TimeFrisco, TX, United States R23h ago