SOAR Engineer - Secret - DC Metro (hybrid)

Join to apply for the SOAR Engineer - Secret - DC Metro (hybrid) role at GuidePoint Security1 day ago Be among the first 25 applicantsJoin to apply for the SOAR Engineer - Secret - DC Metro (hybrid) role at GuidePoint SecurityGet AI-powered advice on this job and more exclusive features.GuidePoint Security provides trusted cybersecurity expertise, solutions and services that help organizations make better decisions and minimize risk. By taking a three-tiered, holistic approach for evaluating security posture and ecosystems, GuidePoint enables some of the nation's top organizations, such as Fortune 500 companies and U.S. government agencies, to identify threats, optimize resources and integrate best-fit solutions that mitigate risk.An active Secret clearance (US Citizen) is required prior to consideration for this role. Work is mostly remote but requires someone living in the DC Metro area.What You'll Get To Do:Automate SOC processes by designing and implementing playbooks in a SOAR platform to reduce manual effort, increase consistency, and accelerate response times.Build and enhance incident response workflows using automation, ensuring they align with real-world analyst needs and security best practices.Collaborate with SOC analysts to identify repetitive tasks and propose targeted automation use cases that improve efficiency and accuracy.Standardize and streamline customer-specific workflows through custom-built SOAR playbooks, driving consistent and scalable response across environments.Develop and maintain reporting dashboards within the SOAR platform to provide visibility into automation performance, incident metrics, and operational tegrate SOAR with core SOC tools such as ticketing systems, monitoring platforms, and SIEMs, enabling seamless, end-to-end workflow automation.Automate enrichment and context gathering tasks for alerts, such as domain/IP reputation lookups, user behavior analysis, and threat intelligence correlation.Support ad hoc requests from stakeholders by building custom SOAR actions, playbooks, or detections that address urgent or emerging threats.Maintain and evolve incident response playbooks inside the SOAR platform, ensuring they stay aligned with organizational goals and evolving threat landscapes.Become a trusted advisor on automation strategy by developing an in-depth understanding of the customer's critical assets, systems, and workflows to prioritize impactful automation.Design advanced detection and response playbooks that support proactive monitoring and early warning for high-value targets or potential targeted attacks.Contribute to the broader SOC mission by participating in alert triage and continuous improvement of automated responses, particularly when tuning or adjusting playbook logic based on real-world feedback.You'll Bring These Qualifications:Minimum 3 years experience in SOC operations supporting incident response and/or detection engineeringMinimum 1 years experience in building automations in a SOAR platformExperience working with structured data (JSON) and REST/SOAP API's1+ years of scripting, Python strongly desiredDOD 8140.01 – DOD8570.01 M IAT Level II, CSSP InfrastructureAbility to demonstrate analytical expertise, close attention to detail, excellent critical thinking, logic, and solution orientation and to learn and adapt quicklyKnowledge of how common protocols and applications work at the network level, including DNS & using the Linux command line interface (CLI)These Qualifications Would Be Nice To Have:Experience managing or developing detection logic for enterprise SIEM systemsExperience with exploitation techniques and use case developmentExperience with IOC datasets (e.g., YARA, OpenIOC, STIX)Experience deploying to, and leveraging cloud environments (AWS, Azure, GCP) to extend operational capabilitiesStrong knowledge of network monitoring and network exploitation techniques, including the MITRE ATT&CK technique framework and other common attack vectorsWe use Greenhouse Software as our applicant tracking system and Zoom Scheduler for HR screen request scheduling. At times, your email may block our communication with you. Please be sure to check your SPAM folder so that you don't miss updates on your application.Why GuidePoint?GuidePoint Security is a rapidly growing, profitable, privately-held value added reseller that focuses exclusively on Information Security. Since its inception in 2011, GuidePoint has grown to over 1000 employees, established strategic partnerships with leading security vendors, and serves as a trusted advisor to more than 4,200 customers.Firmly-defined core values drive all aspects of the business, which have been paramount to the company's success and establishment of an enjoyable workplace atmosphere. At GuidePoint, your colleagues are knowledgeable, skilled, and experienced and will seek to collaborate and provide mentorship and guidance at every opportunity.This is a unique and rare opportunity to grow your career along with one of the fastest growing companies in the nation.Some added perks….Remote workforce primarily (U.S. based only, some travel may be required for certain positions, working on-site may be required for Federal positions)Group Medical Insurance options: Zero Deductible PPO Plan (GuidePoint pays 90% of the premium for employees and 70% for family plans (spouse/children/family) or High Deductible Health Plan with HSA (GuidePoint pays 100% of the employees premiums and 75% for family plans (spouse/children/family) and GPS will contribute in one lump sum: ($500 per EE annually / $1000 per family annually (includes spouse/children/family options)Group Dental Insurance: GuidePoint pays 100% of the premium for employees and 75% of family plans12 corporate holidays and a Flexible Time Off (FTO) programHealthy mobile phone and home internet allowanceEligibility for retirement plan after 2 months at open enrollmentPet Benefit OptionSeniority levelSeniority levelMid-Senior levelEmployment typeEmployment typeFull-timeJob functionJob functionEngineering and Information TechnologyIndustriesIT Services and IT ConsultingReferrals increase your chances of interviewing at GuidePoint Security by 2xSign in to set job alerts for “Engineer” roles.Maryland, United States $50,000.00-$80,000.00 1 week agoWashington, DC $110,000.00-$150,000.00 3 weeks agoLaurel, MD $90,000.00-$115,000.00 1 month agoMachine Learning Engineer, AI (FULLY REMOTE)Maryland, United States $176,600.00-$225,900.00 6 days agoProject Manager/Civil or Environmental EngineerMachine Learning Engineer, AI (FULLY REMOTE)McLean, VA $176,600.00-$225,900.00 6 days agoMachine Learning Engineer, AI (FULLY REMOTE)Washington, DC $176,600.00-$225,900.00 6 days agoSenior Environmental Engineer or Scientist (Site Remediation)Arlington, VA $125,000.00-$160,000.00 2 days agoSenior Environmental Engineer or Scientist (Site Remediation)Washington, DC $125,000.00-$160,000.00 2 days agoSenior Environmental Engineer or Scientist (Site Remediation)Chantilly, VA $125,000.00-$160,000.00 2 days agoReston, VA $110,000.00-$135,000.00 2 days agoSenior Environmental Engineer or Scientist (Site Remediation)IT Help Desk Engineer (Mid)/(Junior)-RemoteSenior Engineer, Energy Efficiency (Hybrid/Remote - US)Washington, DC $102,000.00-$125,000.00 4 weeks agoChantilly, VA $110,000.00-$170,000.00 2 days agoArlington, VA $150,000.00-$180,000.00 3 months agoWe’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI. #J-18808-Ljbffr

Created: 2025-09-17