CrawlJobs Logo

Lead SOAR Engineer

take2games.com Logo

Take-Two Interactive Software, Inc.

Location Icon

Location:
United States , Las Vegas

Category Icon
Category:
IT - Software Development

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

We are looking for a Lead Security Operations Engineer to design, implement, and lead our Security Orchestration, Automation, and Response (SOAR) platform. In this role, you'll be the technical leader responsible for building and optimizing our security automation capabilities. You will work with a diverse set of technologies, including various security tools, APIs, and cloud services, to streamline our security operations and enhance our incident response efficiency. Your expertise will directly contribute to safeguarding Take-Two and its labels systems, networks, and data.

Job Responsibility:

  • Lead the design, development, and maintenance of SOAR playbooks, workflows, and integrations with other security tools
  • Identify and implement automation opportunities to improve the speed and accuracy of security operations and incident response
  • Act as a domain expert for SOAR, providing technical guidance, mentorship, and support to the security team
  • Partner with other security teams to ensure SOAR capabilities align with the overall security strategy
  • Create and maintain comprehensive documentation for workflows and integrations, and develop reports to measure program success
  • Assist with SOAR tool migrations, document all system changes, and stay ahead of the latest SOAR and automation trends

Requirements:

  • 5+ years’ experience as a SOAR Engineer
  • Deep expertise in designing, building, and maintaining automated security workflows and playbooks using a SOAR platform
  • The ability to analyze complex security challenges, find opportunities to automate repetitive manual tasks, and develop data-driven solutions
  • Excellent written and verbal communication skills
  • Hands-on experience with a leading SOAR platform (Palo Alto Networks Cortex XSOAR, Tines or Splunk Enterprise Security) coupled with advanced scripting skills in Python

Nice to have:

  • Relevant industry certifications such as GCED, GCIH, GMON, CEH, etc. or other certifications from organizations like ISC2 or CompTIA
  • Proficiency in programming and scripting languages common to security such as Python, Go, Bash, or Powershell, Javascript
  • Knowledge of security frameworks including MITRE Att&ck, NIST, etc.
  • Prior experience leading a small team or a project
What we offer:
  • Medical (HSA & FSA), dental, vision, 401(k) with company match, employee stock purchase plan, commuter benefits, in-house wellness program, broad learning & development opportunities, a charitable giving platform with company match
  • Fitness allowance, employee discount programs, free games & events and stocked pantries

Additional Information:

Job Posted:
December 12, 2025

Employment Type:
Fulltime
Work Type:
Hybrid work
Icon
Take-Two Interactive Software, Inc. - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Lead SOAR Engineer

Senior Logging & Detection Engineer

We are currently seeking a Senior Logging & Detection Engineer to lead the techn...
Location
Location
Canada , Vancouver; Calgary; Toronto
Salary
Salary:
146200.00 - 197800.00 CAD / Year
clio.com Logo
Clio
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Senior-level expertise building and scaling enterprise-grade detection capabilities and security monitoring systems
  • Expert-level query language proficiency in at least two of the following: Elasticsearch/Lucene, SQL, KQL (Kusto), or SPL (Splunk), demonstrating advanced optimization techniques
  • Extensive Detection Engineering experience owning the full lifecycle of rules, alerts, and automated response workflows within a SIEM/SOAR environment
  • Advanced log analysis skills across diverse, large-scale data sources, including multi-cloud logs (AWS, Azure, GCP), network flows, and advanced security tool outputs
  • Deep dashboard and visualization expertise with tools like Kibana, Grafana, or Tableau, specifically for security metrics and executive reporting
  • Proven expertise in leading threat hunting efforts using log data to proactively identify and track sophisticated threats and anomalous behavior across the environment
  • Senior-level scripting and automation abilities (Python/Go/PowerShell), used to build custom tools, manage APIs, and drive detection automation at scale
  • Architectural experience integrating and optimizing SIEM platforms, SOAR tools, and security orchestration systems
  • Expert performance optimization skills covering query tuning, index design, data partitioning, and overall resource-efficient analytics on big data
  • Significant incident response experience providing expert-level technical analysis and forensic support during major security incidents
Job Responsibility
Job Responsibility
  • Lead the design and implementation of sophisticated, production-ready detection rules and queries across the ELK stack, security data lakes, and multi-cloud logging platforms
  • Architect and optimize complex search queries, aggregations, and analytics dashboards for high-velocity security monitoring, focusing on performance and cost efficiency
  • Design and build automated detection and response workflows (SOAR), ensuring seamless and reliable integration with critical incident response systems
  • Serve as the primary liaison with the threat intelligence team, developing and owning the framework to translate intelligence into scalable, actionable detection capabilities (e.g., MITRE ATT&CK coverage)
  • Establish and maintain a robust detection rule library, query templates, and lead the creation of security analytics playbooks for the wider team
  • Drive performance optimization and resource utilization strategies across petabyte-scale log datasets, including index design and data tiering
  • Develop and standardize custom visualizations, dashboards, and executive reporting capabilities for security stakeholders
  • Lead complex threat hunting operations, mentor junior team members on investigative techniques, and proactively refine detection logic to achieve near-zero false positive rates
  • Collaborate closely with the platform team to define the logging architecture roadmap based on future detection requirements and security observability goals
  • Proactively research emerging threats and attack patterns, translating novel techniques into strategic, forward-looking detection logic and advising security leadership
What we offer
What we offer
  • Top-tier health benefits, dental, and vision insurance
  • Hybrid work environment
  • Flexible time off policy, with an encouraged 20 days off per year
  • $2000 annual counseling benefit
  • RRSP matching and RESP contribution
  • Clioversary recognition program with special acknowledgement at 3, 5, 7, and 10 years
  • Fulltime
Read More
Arrow Right
New

Security Engineer - Detection Engineering, Surface Coverage

Meta Security is looking for a Security Engineer with experience in threat model...
Location
Location
United States , Bellevue
Salary
Salary:
122000.00 - 181000.00 USD / Year
meta.com Logo
Meta
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 2+ years of experience in Detection and Response Engineering or similar Security Engineering role
  • Bachelor's degree or equivalent experience in Cyber Security
  • Experience building complex automations and integrations using Security Orchestration, Automation and Response platforms
  • Experience designing systems used for responding to both external and insider threats
  • Experience analyzing network and host-based security events
  • Knowledge of networking technologies, specifically Transmission Control Protocol (TCP)/Internet Protocol (IP) and the related protocols
  • Knowledge of operating systems, file systems, and memory structures on Windows, MacOS and Linux
  • Coding/scripting experience in one or more general purpose languages
  • Experience with attacker tactics, techniques, and procedures
Job Responsibility
Job Responsibility
  • Lead cross-functional projects to improve our functionalities to effectively detect and respond to security incidents
  • Review security architecture of large-scale custom and commercial systems and under your own initiative propose logging, detection and prevention controls
  • Perform TTP-based Threat Modeling for a wide variety of assets including endpoints, mobile, servers, internal services, public & private cloud environments and networking equipment
  • Perform analysis against logs from a variety of sources (e.g., individual host logs, network traffic logs) to identify potential threats and detection ideas
  • Build response workflows and actions that auto-resolve false positives and provide context scaling our capacity to investigate
  • Support security incident response in a cross-functional environment and drive incident resolution
  • Design and implement attack testing automation to validate detection coverage
  • Build logging pipelines using our custom datasets and infrastructure
What we offer
What we offer
  • bonus
  • equity
  • benefits
Read More
Arrow Right
New

Principal Software Engineer

Principal Software Engineer. We are looking for a highly skilled Principal Softw...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's or Master's degree in Computer Science, Information Systems, or equivalent experience
  • 8+ years of professional software engineering experience, including significant architectural ownership, modeling, domain-driven design, and building distributed systems
  • Strong engineering proficiency with .NET Core (deep understanding of internals, patterns, application architecture)
  • Experience developing and maintaining SOAR system components and control planes
  • Excellent analytical and problem solving skills
  • Experience designing and implementing APIs across multiple technologies (REST, GraphQL, gRPC, etc.)
  • Experience with streaming/event technologies (Kafka, Kinesis, Pub/Sub, etc.)
  • Experience building secure, resilient systems with strong attention to failure modes and operational readiness
  • Designing and integrating software systems running on multiple platform types into overall architecture
Job Responsibility
Job Responsibility
  • Design and build system services using modern engineering practices, with a deep understanding of runtime behavior, concurrency, messaging, and performance patterns
  • Implement APIs across multiple styles and standards (REST, GraphQL, gRPC, etc.), ensuring consistent patterns and a maintainable service ecosystem
  • Develop and maintain management/control-plane components that support complex domain and containment logic
  • Build reliable, well-modeled systems that support policy management, orchestration workflows, and stateful service interactions
  • Deploy, operate, and optimize software in containerized environments using Docker and Kubernetes
  • Ensure engineering excellence through automated testing, performance tuning, and robust error-handling strategies
  • Act as a senior technical leader and mentor within the engineering team
  • Lead design reviews, architecture discussions, and cross-team engineering initiatives
  • Work closely with product managers, security teams, and platform engineers to deliver aligned and scalable solutions
  • Communicate architectural decisions, trade-offs, and long-term implications to both technical and non-technical stakeholders
What we offer
What we offer
  • Health & Wellbeing
  • Personal & Professional Development
  • Unconditional Inclusion
Read More
Arrow Right

Partner Solutions Architect

As a Partner Solutions Architect you will be the expert for our Cortex portfolio...
Location
Location
Japan , Tokyo
Salary
Salary:
Not provided
paloaltonetworks.com Logo
Palo Alto Networks
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years experience in Security Operations or pre-sales/sales engineering within SIEM, SOAR, SOC, and/or XDR/EDR environments
  • SIEM, SOAR and SOC design, deployment, and/or pre-sales experience highly desirable
  • Experience in working with partners, demonstrating problem-solving skills and a can-do attitude
  • Solid understanding of Security Operations Center processes
  • Advanced knowledge of SIEM and/or SOAR solutions
  • This is a field sales position where travel requirements may be required to support in person customer meetings, please discuss with the recruiter on the specifics for this position
  • Proficient in Japanese, Intermediate level in English
Job Responsibility
Job Responsibility
  • Collaborate with Cortex DC, Ecosystem SE and Global Partner Solution Architect teams to recommend and develop partner solutions within your assigned specialization area
  • Present to partners as our expert at all levels in the partner hierarchy, from practitioner to senior leadership
  • As the main technical point of contact for Cortex, you will assist and collaborate to respond effectively to RFIs/RFPs
  • Lead and support partner demonstrations that showcase our unique value proposition
  • Scope and lead Proof of Value (PoV) projects for prospective partners based on best practices to ensure technical win in your assigned opportunities
  • Drive high technical validation and PoV win rates within your assigned specialization area
  • Responsible for discussing and highlighting product alignment with partner requirements and differentiation
  • Architect solutions that will help our partners strengthen and simplify their security posture
  • Document High-Level Design and Key Use Cases to ensure proper implementation and value realization of Palo Alto Networks Solutions
  • Help our partners build and develop further their services around Cortex solutions
Read More
Arrow Right

Manager, Security Operations & Engineering

We’re seeking a strategic and hands-on Manager of Security Operations & Engineer...
Location
Location
United States , Birmingham
Salary
Salary:
156000.00 - 223000.00 USD / Year
daxko.com Logo
Daxko
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years in security operations and/or engineering
  • At least 3 years in a leadership or management role
  • Proven success building or maturing SOC and incident response programs in hybrid cloud and on-premise environments
  • Deep expertise in IAM, cloud security (AWS/Azure), vulnerability management, and endpoint protection
  • Hands-on experience with SIEM/SOAR, threat intelligence platforms, IOCs/TTPs, and automation
  • Strong project management, communication, and stakeholder engagement skills
  • A passion for mentoring and growing high-performing technical teams
Job Responsibility
Job Responsibility
  • Lead and inspire a team of security engineers and SOC analysts focused on cloud security, IAM, vulnerability management, and tooling
  • Hire, coach, and retain top talent by fostering a collaborative and growth-oriented culture
  • Conduct regular performance evaluations and handle team matters with fairness and professionalism
  • Drive the daily execution of security operations and oversee a dynamic SOC environment
  • Develop and mature incident response processes—create playbooks, run tabletop exercises, and lead live response to events
  • Define and report on meaningful metrics and KPIs to assess security posture and continuously improve performance
  • Prioritize and lead cross-functional security projects aligned with business risk and strategic priorities
  • Own and optimize the usage of key security platforms including SIEM, SOAR, EDR, and threat intelligence tools
  • Partner with IT, Engineering, DevOps, and GRC to enhance detection capabilities, streamline response, and reduce organizational risk
  • Promote automation and modernize workflows to increase efficiency and reduce alert fatigue
What we offer
What we offer
  • Flexible paid time off
  • Affordable health, dental, and vision insurance options
  • Monthly fitness reimbursement
  • 401(k) matching
  • New-Parent Paid Leave
  • Casual work environments
  • Remote work
  • Fulltime
Read More
Arrow Right
New

Security Automation Engineer

We are the duck. We develop and empower our people, cultivate relationships, giv...
Location
Location
United States
Salary
Salary:
99000.00 - 132000.00 USD / Year
aflac.com Logo
Aflac
Expiration Date
January 31, 2026
Flip Icon
Requirements
Requirements
  • Bachelor's Degree Computer Science, Information Systems, Cyber Security or other related field
  • 5+ years of IT Security analyst/engineer experience advanced working knowledge within a Security Operations and/or Engineering, including monitoring, incident response and engineering security solutions.
  • Vendor Management Experience to include establishing and ensuring SLA/SLO levels are met
  • Experienced in identifying enterprise threat landscape as well as anatomy of cyberattacks methodology
  • Experience interfacing with pier support teams (Security Engineering, Operations, Threat Intel, Access Management, Legal, Governance, etc
  • Familiarity with enterprise level information security best practices and security frameworks (i.e. Acceptable Use Policies and etc.)
  • Experience interacting with RESTful APIs, including authentication mechanisms, handling responses, error management, and data parsing
  • Strong understanding of structured data formats such as JSON, XML, YAML which are commonly used in configurations and API responses
  • Familiarity with CI/CD pipelines and infrastructure as code principles
  • Experience with development in a SOAR platform
Job Responsibility
Job Responsibility
  • Assist the team lead in Global Security Operations SOAR growth and maturity, actively improving our security monitoring and incident response capabilities.
  • Implementation, development and maintenance of the SOAR platform
  • Collaborate with Global Security teams to identify automation opportunities, create workflows and deliver fully tested automations that lead to efficiency gains.
  • Work with security teams to identify and implement monitoring use cases, incident response procedures, playbooks and other technical documentation.
  • Provides ongoing engineering support for automation platform(s).
  • Participate in Post Incident Reviews and contribute to process improvement when new requirements are identified.
  • Act as subject matter expert in multiple security technologies and processes.
  • Performs other related duties as required.
What we offer
What we offer
  • medical, dental, and vision coverage
  • prescription drug coverage
  • health care flexible spending
  • dependent care flexible spending
  • Aflac supplemental policies (Accident, Cancer, Critical Illness and Hospital Indemnity offered at no costs to employee)
  • 401(k) plans
  • annual bonuses
  • opportunity to purchase company stock
  • 11 paid holidays
  • up to 20 days PTO
  • Fulltime
!
Read More
Arrow Right
New

Cybersecurity Incident Response Team Lead

The Cybersecurity Incident Response Team Lead is a leadership role responsible f...
Location
Location
United States Of America , NEW YORK
Salary
Salary:
150000.00 - 185000.00 USD / Year
credit-agricole.com Logo
Crédit Agricole
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Cybersecurity, Information Technology, Business Administration, or a related field
  • Minimum 10+ years of experience in information security or related field
  • Ability to analyze, prioritize, and manage security incidents effectively
  • Ability to align cyber risk initiatives with business objectives
  • Strong ensure thorough documentation and clear communications over security operations activities
  • Proven track record of building and leading high performing teams
  • Expertise in navigating banking regulations
  • Strong knowledge with information security technologies such as SIEM, SOAR, EDR, NDR, etc.
  • Strong knowledge with leading security investigations
  • Deep understanding of frameworks such as NIST Cybersecurity Framework
Job Responsibility
Job Responsibility
  • Develop and execute a comprehensive security operations strategy aligned with the bank's risk appetite and business objectives
  • Provide thought leadership on emerging cyber risks and recommend proactive measures to mitigate them
  • Serve as a trusted advisor to executive leadership, management committees, and the board on cyber risk issues
  • Define, maintain, and report operational metrics to evaluate Security Operations program performance, effectiveness, and adherence with organizational and regulatory requirements
  • Direct and manage Americas Cyber Security Incident Response Team (CSIRT) to ensure timely monitoring, detection, and response to threats
  • Lead the development and execution of the bank’s incident response plan and associated playbooks
  • Coordinate responses to security incidents, ensuring minimal impact and quick recovery
  • Establish and maintain a threat intelligence program to proactively identify and respond to emerging threats
  • Evaluate, implement, and optimize security processes and technologies to enhance detection and response capabilities
  • Collaborate with IT and engineering teams to integrate security into systems and processes
  • Fulltime
Read More
Arrow Right

Senior Information Security Engineer

Serve as a technical leader in our Security team reporting to our Information Se...
Location
Location
United States , Boston
Salary
Salary:
150000.00 - 190000.00 USD / Year
whoop.com Logo
Whoop
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Computer Science, Information Security, or a related technical field and/or advanced certifications (CISSP, CISM, AWS Security Specialty, SANS, etc.)
  • 8+ years of hands-on experience in Information Security, IT Security, or a related role, including at least 2 years in a senior or lead capacity
  • Proven track record implementing and managing advanced security technologies (e.g., CASB, CNAPP, CSPM, SIEM, SOAR, DLP, SWG)
  • Experience securing AI/ML systems or APIs, including governance of third-party AI integrations and organizational use of AI tools
  • Strong understanding of modern cloud security architecture (AWS, Azure, GCP) and experience performing threat modeling and risk assessments on cloud-based systems
  • Hands-on experience with application security tooling (SAST, SCA, DAST) and embedding secure development practices
  • Demonstrated leadership in security incident response, investigations, and root cause analysis
  • Effective communicator with the ability to influence stakeholders and explain security concepts to technical and non-technical audiences
  • Strong project management skills and the ability to drive initiatives to completion in a fast-paced environment
  • Experience mentoring engineers and setting operational standards
Job Responsibility
Job Responsibility
  • Implement and enhance security controls by leading the deployment, integration, and tuning of solutions such as CNAPP, SIEM, CASB, EDR, DLP, and MDM to maximize effectiveness
  • Support security design decisions by providing subject matter expertise on cloud and SaaS security best practices while influencing architecture led by the Security Architect role
  • Lead incident response and investigations by guiding containment, remediation, root cause analysis, and post-incident improvements
  • Strengthen application security by overseeing secure development practices and managing SAST, SCA, and DAST tooling
  • Advance identity and access management by supporting IAM policy enforcement, SSO, MFA, SCIM, RBAC, and user lifecycle governance
  • Secure AI systems and integrations by assessing and protecting embedded APIs and organizational AI tool usage to ensure resilience, privacy, and compliance
  • Collaborate cross-functionally by working with Engineering, IT, and GRC teams to embed security into systems and workflows
  • Mentor and influence by providing technical guidance, reviewing work, and promoting security-first thinking across the organization
  • Stay ahead of threats and regulations by tracking emerging risks, technologies, and compliance requirements to inform forward-looking strategies
  • Participate in and help improve the on-call rotation by providing guidance, escalation support, and driving improvements in response processes
What we offer
What we offer
  • competitive base salaries
  • meaningful equity
  • generous equity package
  • Fulltime
Read More
Arrow Right
Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy