Design, build, and maintain automation and orchestration solutions to improve security outcomes, reduce manual effort, and increase reliability. Partner with security teams to integrate tools, standardize workflows, and implement measurable security automation. Develop playbooks, integrations, and reusable automation components.
Key Highlights
Key Responsibilities
Technical Skills Required
Benefits & Perks
Nice to Have
Job Description
Automation, Orchestration, Security Engineer - 100% Remote -Direct Hire - Pay: Market
NO (Sponsorship, H1B, OPT, F1, EAD, Corp-to-Corp)
CBTS is searching for an Automation, Orchestration, Security Engineer who designs, builds, and maintains automation and orchestration solutions that improve security outcomes, reduce manual effort, and increase reliability across security operations and engineering. This role partners with Security Operations, Incident Response, IT, and Platform/Cloud teams to integrate tools, standardize workflows, and implement measurable, auditable security automation.
This position is hands-on and requires strong engineering fundamentals, security domain knowledge, and automation-first mindset. The engineer will build integrations, develop playbooks/runbooks, and help mature detection-to-response processes with a focus on scalability, safety, and governance.
Responsibilities:
- Own the design and delivery of security automation and orchestration capabilities that improve response time, consistency, and quality across security workflows.
- Develop and maintain SOAR playbooks for alert triage, enrichment, containment, and remediation.
- Build and manage automation integrations with security tooling (SIEM, EDR/XDR, IAM, ticketing, vulnerability management, cloud security) using APIs, webhooks, and event-driven architectures.
- Create reusable automation components (scripts, libraries, templates) with appropriate error handling, retries, logging, and observability.
- Collaborate with SOC analysts and Incident Response to translate procedures into automated runbooks; ensure safe execution with approval gates where needed.
- Design automation with governance: role-based access controls, change management, auditability, and documentation.
- Partner with engineering and infrastructure teams to automate security controls and guardrails (policy-as-code, compliance checks, hardening, configuration drift remediation).
- Support incident response by developing rapid automation for containment and evidence collection (while maintaining chain-of-custody and logging requirements).
Searching for Cyber Security roles that provide visa sponsorship? Connect with international employers through Cyber Security Jobs with Visa Sponsorship opportunities actively seeking talented professionals.
Requirements:
- Candidates must demonstrate strong automation engineering skills, comfort working with APIs and distributed systems, and practical security knowledge relevant to modern enterprise environments.
- 3+ years of experience in automation engineering, security engineering, security operations engineering, or a related role.
- Proficiency in at least one scripting/programming language (Python preferred; PowerShell, or JavaScript).
- Experience with Automation and Orchestration tools like Ansible, Itential, Aria Orchestrator or similar product.
- Hands-on experience designing and implementing automation using APIs (REST/JSON), webhooks, and authentication methods (OAuth2, tokens, mutual TLS).
- Working knowledge of SIEM concepts (log ingestion, correlation, queries) and SOC processes (triage, escalation, incident handling).
- Strong understanding of core security domains: IAM, endpoint security, network security, vulnerability management, and cloud security fundamentals.
- Experience with Git-based workflows and software engineering practices (code review, branching strategies, testing).
- Ability to document solutions clearly (runbooks, diagrams, operating procedures) and communicate effectively with technical and non-technical stakeholders.
Explore our comprehensive directory of visa sponsorship jobs from employers worldwide who are ready to sponsor talented international professionals.
Preferred Qualifications and Technical Skills
- Experience with vulnerability management automation (ticketing workflows, remediation tracking, exception handling, SLA reporting).
- Cloud platform experience (AWS, Azure, and/or GCP), including security services and identity models.
- Container and Kubernetes security familiarity
- Experience integrating with EDR/XDR tools and automating response actions (isolation, kill process, quarantine).
- Familiarity with ITSM and workflow tools (ServiceNow, Jira) and structured change management.
Interested in opportunities specifically in United State? Discover our dedicated Visa Sponsorship Jobs in United State page featuring roles from top employers in this location.
Success Criteria, Working Relationships, and Additional Information
- Success in this role is measured by increased automation coverage, reduced manual toil, improved response timelines, and safe, reliable orchestration with strong governance and auditability.
- Deliver high-impact playbooks that measurably reduce MTTA/MTTR and analyst workload.
- Ensure automations follow least-privilege and change-control requirements; maintain strong logging and traceability.
- Partner effectively with SOC, IR, IT, and Cloud/Platform Engineering to align workflows and implement remediation actions safely.
- Create clear documentation and knowledge transfer materials to enable operational ownership and scale.
- Uphold secure coding practices and ensure automation cannot be abused (input validation, permission boundaries, approval steps).
CBTS provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, disability, genetic information, marital status, amnesty, or status as a protected veteran in accordance with applicable federal, state and local laws.
Similar Jobs
Explore other opportunities that match your interests
Security Engineer - Identity
sundayy