Security Automation Engineer (SOAR) - Mid-Atlantic region (Remote)

Requirements

• Familiarity using LLMs in a development and automation context, including AI assisted or agentic coding tools such as Claude Code or Codex; exposure to MCP based integrations is a plus
• Ability to independently scope automation requirements with clients and translate them into a build plan
• Platform or vendor certifications: Tines, Torq, Cortex XSOAR; or SIEM/EDR certs (such as Splunk, Microsoft Sentinel, CrowdStrike)
• Cloud experience (AWS or Azure) and familiarity with cloud native security tooling
• Prior delivery experience in a consulting, professional services, or MSSP environment
• Detection engineering exposure in areas such as detections-as-code (DaC), Sigma, or similar
• Version control and automation-as-code practices (Git or similar repo controls)
• We use Greenhouse Software as our applicant tracking system and Zoom Scheduler for HR screen request scheduling. At times, your email may block our communication with you. Please be sure to check your SPAM folder so that you don't miss updates on your application.
• Why GuidePoint?
• This is a unique and rare opportunity to grow your career along with one of the fastest growing companies in the nation.
• Some added perks....
• Remote workforce primarily (U.S. based only, some travel may be required for certain positions, working on-site may be required for Federal positions)
• Group Dental Insurance: GuidePoint pays 100% of the premium for employees and 75% of family plans
• 12 corporate holidays and a Flexible Time Off (FTO) program
• Healthy mobile phone and home internet allowance
• Eligibility for retirement plan after 2 months at open enrollment
• Pet Benefit Option

Benefits

Additional Information

GuidePoint Security provides trusted cybersecurity expertise, solutions and services that help organizations make better decisions and minimize risk. By taking a three-tiered, holistic approach for evaluating security posture and ecosystems, GuidePoint enables some of the nation's top organizations, such as Fortune 500 companies and U.S. government agencies, to identify threats, optimize resources and integrate best-fit solutions that mitigate risk. Required Qualifications 5+ years in security operations with a working understanding of how a SOC functions end to end (alert triage, escalation, incident response, case management) 3+ years specifically designing and building security automation/orchestration workflows Hands-on experience on at least one SOAR/automation platform; Tines, Torq, or Cortex XSOAR preferred Proficiency integrating security and IT systems via REST APIs, webhooks, and JSON Scripting ability, primarily Python, for custom logic, data transforms, and handling within automated workflows Working knowledge of the tooling categories automations connect to: SIEM, EDR/XDR, ticketing (ServiceNow, Jira), threat intelligence, and email security Ability to decompose a manual security process into a reliable automated workflow, including error handling, conditional logic, and secure runs

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at guidepointsecurity? Share your experience