Mid-Senior SOAR Automation Engineer - Remote
About the Role
We are seeking a talented Mid-Senior SOAR Automation Engineer to join our team at Dragonfli Group. This fully remote position allows you to work from anywhere in the United States while contributing to critical cybersecurity initiatives for a large U.S. federal agency. As a SOAR Automation Engineer, you will design, implement, and scale security automation capabilities across a complex enterprise environment, focusing on Splunk Phantom (Splunk SOAR) and enhancing security operations.
What You'll Do
- Design, build, and maintain SOAR automation using Splunk Phantom.
- Develop and enhance automated playbooks to support detection, response, and investigation workflows.
- Integrate SOAR with SIEM, security tools, cloud platforms, and on-prem systems.
- Apply AI-enabled enrichment and decision support using Azure AI services.
- Lead automation design decisions and guide SOC teams on effective SOAR usage.
- Improve dashboards, metrics, and operational visibility tied to automated workflows.
- Collaborate with security analysts, engineers, and stakeholders to identify automation opportunities.
- Operationalize and scale automation across the security lifecycle.
- Ensure reliability, maintainability, and documentation of automation solutions.
Requirements
- 4+ years of experience building and supporting SOAR/security automation solutions in enterprise environments.
- Hands-on experience with Splunk Phantom (Splunk SOAR).
- Strong background in security workflow automation and playbook development.
- Experience integrating cloud and on-premise systems via APIs.
- Working familiarity with Azure AI services and applied AI use cases in cybersecurity.
- Strong problem-solving and analytical skills.
- Ability to collaborate across technical and non-technical teams.
- Excellent written and verbal communication skills.
- Bachelor’s degree in a cyber-related field or equivalent experience/certifications.
Nice to Have
- Experience in federal cybersecurity environments.
- Knowledge of SOC operations and incident response workflows.
- Python or scripting for automation.
- SIEM integration (Splunk Enterprise / Splunk ES).
- Familiarity with NIST cybersecurity frameworks.
What We Offer
- Health, dental, and vision insurance.
- Paid Time Off (PTO) and 11 Federal Holidays.
- 401(k) employer match.
- Fully remote work environment.
- Opportunities for professional growth and development.
- Collaborative team culture focused on innovation.
This role offers a unique opportunity to work remotely as a Mid-Senior SOAR Automation Engineer, focusing on cutting-edge cybersecurity solutions. Enjoy competitive benefits and the chance to make a significant impact.
About Dragonfli Group
Explore Dragonfli Group careers in 2026, featuring a range of remote, hybrid, and office roles. Utilize advanced filters to find the perfect job, track your application status, and gain valuable insights about the company culture. Discover tailored career opportunities at Dragonfli Group that match your skills and aspirations. Start your journey towards a fulfilling career today!
Who Will Succeed Here
Proficient in Splunk Phantom and capable of designing and implementing security automation workflows that integrate with Azure AI and various APIs to enhance security operations.
Self-motivated and disciplined remote worker with a strong ability to manage time effectively, prioritize tasks, and collaborate asynchronously with cross-functional teams in a fully remote environment.
Analytical mindset with a strong foundation in Python programming and SIEM technologies, enabling the candidate to troubleshoot and optimize automation processes while adapting to evolving security threats.
Learning Resources
Career Path
Market Overview
Skills & Requirements
Domain Trends
Industry News
Loading latest industry news...
Finding relevant articles from the last 6 months