Job Description

• Design, develop, and optimize automation workflows in Torq Hyperautomation or other SOAR platforms (XSOAR, Splunk SOAR, LogicHub, Swimlane).
  
• Build API-driven integrations across security tools including SIEM, EDR, XDR, case management, and cloud platforms.
  
• Develop automation playbooks for incident response, alert enrichment, triage, and remediation.
  
• Enhance security operations efficiency through scripting, workflow tuning, and custom integrations.
  
• Collaborate with SOC, SecOps, and engineering teams to identify automation gaps and implement scalable solutions.
  
• Maintain documentation for automation flows, integration logic, and operational use cases.
  
• Conduct testing, validation, and continuous performance improvement of automation pipelines.
  
• Ensure workflows meet security, reliability, and compliance standards.
  

Requirements

• Overall 5+ years, including 3+ years in required skills
  
• Strong hands-on experience with SOAR platforms (Torq / XSOAR / Splunk SOAR / Swimlane / LogicHub).
  
• Expertise in API integrations, REST APIs, JSON, and security tooling integrations.
  
• Good knowledge of SIEM, EDR/XDR, IAM, cloud platforms, and incident response processes.
  
• Strong scripting experience (Python, JavaScript, or similar).
  
• Experience in workflow design, automation logic, and orchestration mechanisms.
  
• Understanding of SecOps processes, SOC operations, and automation best practices.
  
• Strong problem-solving and analytical skills.
  
• Ability to work in fast-paced security environments with minimal supervision.