[LTA-ITCD] LEAD / PRINCIPAL CYBER ENGINEER (AUTOMATION)

[What the role is]

[What you will be working on]

The SOC Automation Engineer is the primary builder and maintainer of the Cybersecurity Operations Centre's automation, orchestration, and AI-assisted capability layer. This role owns the engineering of SOAR playbooks, API integrations, and AI/ML-enhanced workflows that reduce manual analyst workload, accelerate detection-to-response timelines, and enable the SOC to operate at scale. Critically, this role is also the SOC's internal champion for identifying and implementing AI augmentation opportunities across all security operations functions — from alert triage to threat hunting to reporting.

Job Scope

• Design, develop, test, and maintain SOAR playbooks for alert triage, enrichment, containment, remediation, and escalation workflows on FortiSOAR and/or Microsoft Sentinel Automation​
• Build modular, reusable playbook compon...