Signiminds - Staff Security Engineer - SOAR/SIEM

Description :

We are seeking a skilled and versatile Staff Security Engineer to lead the advancement of our detection and automation initiatives. Reporting to the Senior Manager of Security Engineering and Operations, you will collaborate with cross-functional teams and external partners to design, build, and optimize security systems that protect sensitive data and infrastructure from cyber threats.

This role requires deep expertise in security automation, incident response, and SOAR/SIEM integrations, as well as the ability to innovate, lead, and scale detection capabilities across the organization.

Key Responsibilities :

Automation & Integration :

- Lead the development and enhancement of automations within the SOAR (Security Orchestration, Automation, and Response) platform.

- Design and build playbooks using both out-of-the-box and custom integrations and functions.

- Develop custom integrations and scripts using Python, PowerShell, or equivalent programming languages.

- Integrate existing security and IT systems with XSOAR and other orchestration platforms.

- Participate in architecture design and analysis related to automation and threat detection.

Operations & Incident Response :

- Lead and optimize incident response workflows to ensure fast and effective containment and mitigation.

- Troubleshoot and resolve issues related to automation pipelines and security tools.

- Collaborate with network engineering, cloud operations, and application teams to ensure seamless integration of automation and detection solutions.

Strategy & Documentation :

- Catalogue and prioritize security automation use cases with stakeholders.

- Lead use case and playbook design sessions to identify opportunities for orchestration and efficiency.

- Develop and maintain detailed documentation for automation processes, playbooks, and integrations.

- Contribute to security strategy, roadmap execution, and overall threat detection platform development.

Your Teams Mission :

- Execute and evolve security strategy through automation, orchestration, and advanced detection.

- Enhance incident response capabilities by refining and scaling automation frameworks.

- Innovate and implement new security engineering methods that strengthen the organizations security posture.

Qualifications :

Education & Experience :

- Bachelors degree in security engineering, Computer Science, Data Science, Computer Engineering, or related technical field.

years of experience in Security Engineering, Security Automation, or Threat Detection roles.

Technical Expertise :

- Strong experience with SOAR platforms (e.g., Cortex XSOAR, Splunk SOAR, Demisto).

- Familiarity with SIEM, CASB, DLP, and EDR solutions.

- Proficiency in Python (required); experience with PowerShell, Bash, or Go is a plus.

- Working knowledge of cloud environments (AWS, Azure, or GCP).

- Solid understanding of network security, incident response, and threat detection principles.

- Experience developing custom security automations, APIs, and integrations.

Soft Skills :

- Excellent software design, problem-solving, and debugging skills.

- Strong collaboration and communication abilities across technical and business teams.

- Proactive, analytical thinker with a passion for automation and cybersecurity innovation.

- Energetic, curious, and motivated to stay ahead of the evolving threat landscape.

Mandatory Skill :

- SOAR / XSOAR / Security Automation / Orchestration

- Python / PowerShell / Scripting

- SIEM / CASB / DLP / EDR

- Incident Response / Threat Detection / Playbooks

- Cloud Security (AWS, Azure, GCP)

- Security Integrations / Custom APIs / Automation Frameworks

- Cortex XSOAR / Splunk SOAR / Demisto

- Security Architecture / Security Operations

- Automation Design / Workflow Development