Core4ce is seeking a skilled and experienced SOAR Architect to lead the design, implementation, and optimization of our Security Orchestration, Automation, and Response (SOAR) platform. The ideal candidate will have deep expertise in security operations, playbook development, and integration with diverse security tools to enhance our incident response capabilities.

Key Responsibilities:

• Platform Architecture & Design: Design and implement scalable SOAR architectures to meet organizational security requirements.
• Playbook Development: Create, optimize, and maintain automated playbooks to streamline security incident response processes.
• Integration & Customization: Integrate SOAR with various security tools (SIEM, EDR, threat intelligence platforms, etc.) and develop custom connectors when needed.
• Collaboration: Work closely with SOC, IT, and development teams to align automation strategies with business and security objectives.
• Documentation & Training: Produce detailed documentation of designs, configurations, and playbooks, and provide training to security teams.
• Continuous Improvement: Monitor the SOAR environment, assess new features, and recommend enhancements to improve security posture and efficiency.

Required Skills

Requirements:

• Proven experience as a SOAR Architect or similar role in cybersecurity.
• Strong knowledge of SOAR platforms, security operations, and incident response workflows.
• Experience with Python scripting for playbook development and tool integration.
• Familiarity with REST APIs, JSON, and other relevant data exchange formats.
• Understanding of security concepts like threat intelligence, vulnerability management, and endpoint security.
• Excellent problem-solving skills and the ability to work in a fast-paced environment.
• Relevant certifications (e.g., Palo Alto Networks certifications, CISSP, or equivalent) is required.
• Ability to achieve and maintain a Secret clearance

Preferred Qualifications:

• Experience with Splunk, Elasticsearch, or other SIEM platforms.
• Knowledge of cloud security architectures (AWS, Azure, GCP).
• Hands-on experience with incident management platforms and ticketing systems.

All qualified applicants will receive consideration for employment without regard to race, color, sex, sexual orientation, gender identity, religion, national origin, disability, veteran status, age, marital status, pregnancy, genetic information, or other legally protected status.