Remotery

Technical Lead – Cybersecurity

Posted 3 days ago

This is a fully remote position, open to applicants in Alabama.

📋 Description

• Take charge of designing and delivering security automation and orchestration solutions that enhance response times, consistency, and quality across security workflows.

• Create and sustain SOAR playbooks for alert triage, enrichment, containment, and remediation processes.

• Develop and oversee automation integrations with security tools (SIEM, EDR/XDR, IAM, ticketing, vulnerability management, cloud security) utilizing APIs, webhooks, and event-driven architectures.

• Construct reusable automation components (scripts, libraries, templates) with robust error handling, retries, logging, and observability.

• Work closely with SOC analysts and Incident Response teams to convert procedures into automated runbooks, ensuring safe execution with necessary approval gates.

• Design automation with a focus on governance: implementing role-based access controls, change management, audit trails, and comprehensive documentation.

• Collaborate with engineering and infrastructure teams to automate security controls and guardrails (policy-as-code, compliance checks, hardening, configuration drift remediation).

• Enhance incident response by creating rapid automation for containment and evidence collection, ensuring adherence to chain-of-custody and logging requirements.


⛳️ Requirements

• Minimum of 3 years' experience in automation engineering, security engineering, security operations engineering, or a similar field.

• Proficient in at least one scripting/programming language (Python preferred; PowerShell or JavaScript are also acceptable).

• Familiarity with Automation and Orchestration tools such as Ansible, Itential, Aria Orchestrator, or similar products.

• Practical experience in designing and implementing automation using APIs (REST/JSON), webhooks, and various authentication methods (OAuth2, tokens, mutual TLS).

• Understanding of SIEM concepts (log ingestion, correlation, queries) and SOC processes (triage, escalation, incident handling).

• Strong grasp of essential security domains: IAM, endpoint security, network security, vulnerability management, and cloud security fundamentals.

• Experience with Git-based workflows and software engineering principles (code review, branching strategies, testing).

• Capability to clearly document solutions (runbooks, diagrams, operating procedures) and communicate effectively with both technical and non-technical stakeholders.


🏝️ Benefits

• Health insurance

• Retirement plans

• Paid time off

• Flexible work arrangements

• Professional development

People also viewed

CrowdStrike3 hours ago

Senior Cloud Security Consultant – JAPAC

AU flagAustralia OnlyFull-timeCybersecurity / Security Engineer
ApplyView job
ESA - Electronic Security Association3 hours ago

Lead Cyber Security Architect

RO flagRomania OnlyFull-timeCybersecurity / Security Engineer
ApplyView job
DKB Code Factory GmbH3 hours ago

IT Security, AI Redteamer

ES flagSpain OnlyFull-timeCybersecurity / Security Engineer
ApplyView job
Aledade, Inc.3 hours ago

Senior Security Engineer II – DSPM

US flagTexas OnlyFull-timeCybersecurity / Security Engineer
ApplyView job
Toyota North America3 hours ago

Regional Sales Manager – Security

US flagNorth Carolina, +4 more statesFull-timeCybersecurity / Security Engineer$85k – $95k/year
ApplyView job
HubSpot3 hours ago

Manager, Security GRC – Compliance Onboarding, Readiness

US flagUnited States OnlyFull-timeCybersecurity / Security Engineer$131.5k – $210.4k/year
ApplyView job

Never miss a great job!

Get handpicked remote jobs straight to your inbox weekly.

Trusted by 7,400+ designers