Piper Companies is seeking a Remote SOAR Engineer Consultant to join an international leader in cybersecurity services. The SOAR Engineer Consultant will play a pivotal role in assisting with development and deployment of XSOAR playbooks for clients.

Responsibilities of the SOAR Engineer Consultant include:

• Develop and implement custom XSOAR playbooks, ensuring efficient automation workflows.
• Write, optimize, and maintain Python-based APIs to support integrations and automation efforts.
• Collaborate with technical leads to create and refine a log ingestion strategy aligned with security objectives.
• Contribute to detection strategies, leveraging industry best practices such as MITRE ATT&CK and NIST frameworks.
• Tune and optimize log sources, correlation rules, and alerting mechanisms for SIEM and SOAR platforms.
• Identify opportunities for automation within Security Operations Center (SOC) workflows, improving incident response efficiency.
• Act as a Subject Matter Expert (SME) on SOAR and SIEM technologies, assisting clients with best practices and implementation.
• Work closely with internal and external teams to drive product adoption and successful deployments.
• Provide clear, technical documentation detailing SOAR and SIEM processes, ensuring streamlined operations.

Qualifications for the SOAR Engineer Consultant:

• 5+ years of experience in automation and cybersecurity, with a strong focus on SOAR (XSOAR preferred, but SOAR alternatives like Swimlane accepted).
• Expert-level Python skills, including the ability to process unformatted files, retrieve data via API calls with error handling, and optimize scripts without external resources.
• Hands-on experience developing and customizing SOAR playbooks for real-world security operations use cases.
• Strong understanding of SOC operations, including tooling, processes, and security frameworks (MITRE ATT&CK, NIST).
• Experience with SIEM technologies (Splunk, IBM QRadar, etc.), including log source integration, event correlation, and rule tuning.
• Ability to differentiate between SOC and SIEM, understanding their roles in cybersecurity automation and incident response.
• Strong automation mindset, capable of identifying areas for efficiency within SIEM and SOC workflows.
• Knowledge of security analysis & response across endpoint, network, and cloud-based environments is a plus.
• Relevant bachelor’s degree or industry certifications (CISSP, GIAC, SIEM Vendor Qualification, etc.)

Compensation for the SOAR Engineer Consultant:

• Salary Range: $140,000 - $155,000
• Comprehensive Benefits: Medical, Dental, Vision, 401K, PTO, Sick Leave as required by law, and Holidays

• Develop and implement custom XSOAR playbooks, ensuring efficient automation workflows.
• Write, optimize, and maintain Python-based APIs to support integrations and automation efforts.
• Collaborate with technical leads to create and refine a log ingestion strategy aligned with security objectives.
• Contribute to detection strategies, leveraging industry best practices such as MITRE ATT&CK and NIST frameworks.
• Tune and optimize log sources, correlation rules, and alerting mechanisms for SIEM and SOAR platforms.
• Identify opportunities for automation within Security Operations Center (SOC) workflows, improving incident response efficiency.
• Act as a Subject Matter Expert (SME) on SOAR and SIEM technologies, assisting clients with best practices and implementation.
• Work closely with internal and external teams to drive product adoption and successful deployments.
• Provide clear, technical documentation detailing SOAR and SIEM processes, ensuring streamlined operations