GuidePoint Security was looking for a Senior SOAR Developer/Engineer - Northeast (Remote)

Responsibilities

• Architect, implement, and develop automations within the SOAR sytem/case management with a focus on modern platforms including: Splunk SOAR/Phantom
• Architect, implement, and develop automations within the SOAR sytem/case management with a focus on modern platforms including: Palo Alto XSOAR
• Architect, implement, and develop automations within the SOAR sytem/case management with a focus on modern platforms including: Microsoft Sentinel
• Architect, implement, and develop automations within the SOAR sytem/case management with a focus on modern platforms including: Tines
• Architect, implement, and develop automations within the SOAR sytem/case management with a focus on modern platforms including: Torq
• Architect, implement, and develop automations within the SOAR sytem/case management with a focus on modern platforms including: Google SecOps / Chronicle
• Architect, implement, and develop automations within the SOAR sytem/case management with a focus on modern platforms including: CrowdStrike Fusion
• Architect, implement, and develop automations within the SOAR sytem/case management with a focus on modern platforms including: Palo Alto XSIAM
• Architect, implement, and develop automations within the SOAR sytem/case management with a focus on modern platforms including: SentinelOne HyperAutomation
• Design and develop automations and case management templates to ease analyst investigation/remediation
• Expertise developing SOC and security-focused content and automation
• Scripting and development skills (BASH, Perl, Python or Java) with strong knowledge of regular expressions
• Ability to autonomously prioritize and successfully deliver across a portfolio of projects
• Some travel may be required to clients in the Northeast region
• Security Implementation Engineers work from remote/virtual when not visiting client locations

Requirements

• 3-5 years of security engineering experience
• Hands-on experience with at least one of the following SOAR platforms: Splunk SOAR/Phantom
• Hands-on experience with at least one of the following SOAR platforms: Palo Alto XSOAR
• Hands-on experience with at least one of the following SOAR platforms: Microsoft Sentinel
• Hands-on experience with at least one of the following SOAR platforms: Tines
• Hands-on experience with at least one of the following SOAR platforms: Torq
• Hands-on experience with at least one of the following SOAR platforms: Google SecOps / Chronicle
• Hands-on experience with at least one of the following SOAR platforms: CrowdStrike Fusion
• Hands-on experience with at least one of the following SOAR platforms: Palo Alto XSIAM
• Hands-on experience with at least one of the following SOAR platforms: SentinelOne HyperAutiomation
• Familiarity with detection engineering, threat modeling, and MITRE ATT&CK framework.
• Proficiency with scripting (e.g., Python, PowerShell, Bash) and regular expressions.
• Deep understanding of logging from cloud (AWS, Azure, GCP) and on-prem environments.

Benefits

• Remote workforce primarily (U.S. based only, some travel may be required for certain positions, working on-site may be required for Federal positions)
• Group Medical Insurance options: Zero Deductible PPO Plan (GuidePoint pays 90% of the premium for employees and 70% for family plans (spouse/children/family) or High Deductible Health Plan with HSA (GuidePoint pays 100% of the employees premiums and 75% for family plans (spouse/children/family) and GPS will contribute in one lump sum: ($500 per EE annually / $1000 per family annually (includes spouse/children/family options)
• Group Dental Insurance: GuidePoint pays 100% of the premium for employees and 75% of family plans
• 12 corporate holidays and a Flexible Time Off (FTO) program
• Healthy mobile phone and home internet allowance
• Eligibility for retirement plan after 2 months at open enrollment
• Pet Benefit Option

Work Arrangement

Remote (Country)

Additional Information

• Some travel may be required to clients in the Northeast region
• Security Implementation Engineers work from remote/virtual when not visiting client locations
• Preference will be given to candidates located on the U.S. East Coast to align with team collaboration and customer support hours