Cyber Security Automation Engineer

This position is listed on behalf of a partner company, who manages all applications and next steps. Our partner is looking for a Cyber Security Automation Engineer based in India.

This role focuses on designing and building advanced security automation solutions that strengthen threat detection, response, and operational efficiency at scale. You will work at the intersection of cybersecurity, engineering, and AI, developing automated workflows that support SOC, threat intelligence, DLP, and insider risk functions. The position requires strong hands-on engineering skills to build integrations, playbooks, and scalable automation using modern security platforms and APIs. You will also explore how AI and LLMs can be leveraged to enhance security operations and accelerate incident resolution. The environment is highly technical, fast-paced, and collaborative, with exposure to enterprise-scale security operations. This is an opportunity to directly impact how security teams operate by reducing manual effort and improving response accuracy through automation.

• Design, develop, and maintain end-to-end security automation playbooks across SOC, DLP, insider risk, threat intelligence, and red team functions.
• Own the full lifecycle of automation workflows, including requirements gathering, design, development, testing, deployment, and continuous maintenance.
• Identify opportunities for security automation improvements and collaborate with stakeholders to implement scalable and efficient solutions.
• Integrate LLMs and AI tools to enhance analyst productivity, automate incident response actions, and support decision-making processes.
• Work with detection engineering teams to build feedback loops that improve detection tuning, enrichment, and accuracy.
• Ensure automation quality through testing, validation, and adherence to coding and security standards.
• Promote standardization, reuse, and continuous improvement across all automation initiatives.

Requirements:

• Bachelor’s degree in Computer Science, Information Systems, Statistics, or a related quantitative field.
• 2+ years of cybersecurity experience with hands-on involvement in automation or security engineering.
• 2+ years of experience with SOAR platforms such as Splunk SOAR, Palo Alto XSOAR, Swimlane, or Tines.
• Strong proficiency in Python for automation, scripting, and backend development.
• Experience working with REST APIs and third-party integrations in security or enterprise environments.
• Familiarity with Bash and PowerShell scripting for automation tasks.
• Experience leveraging LLMs or AI tools (e.g., OpenAI, Hugging Face) in practical applications.
• Understanding of cybersecurity principles, incident response workflows, and secure software development practices.
• Experience with GitHub for version control and CI/CD pipelines (e.g., GitHub Actions).
• Strong communication, organizational, and problem-solving skills in agile environments.
• Exposure to data visualization tools such as PowerBI is a plus.

Benefits:

• Competitive compensation package aligned with experience and industry benchmarks.
• Opportunity to work on cutting-edge security automation and AI-driven cybersecurity solutions.
• Exposure to enterprise-scale SOC operations and advanced threat management workflows.
• Flexible and collaborative remote-friendly work environment.
• Strong learning opportunities in AI, automation, and modern cybersecurity engineering practices.
• Chance to build high-impact systems that directly improve security efficiency and incident response.