Note: The job is a remote job and is open to candidates in USA. REDLEO SOFTWARE INC. is seeking a Security Automation Engineer to design, build, and maintain security automation and orchestration. The role involves improving response speed, reducing manual work, and strengthening security operations by integrating tools and standardizing workflows.
Responsibilities
- Build and deliver security automation and SOAR playbooks for triage, enrichment, containment, and remediation
- Integrate automation with SIEM, EDR/XDR, IAM, ticketing, vulnerability management, and cloud tools using APIs and event-driven workflows
- Create reusable automation components with proper logging, error handling, and observability
- Convert SOC/IR procedures into automated runbooks with safe execution controls
- Implement automation governance: RBAC, change control, auditability, documentation
- Automate security guardrails (policy-as-code, compliance checks, hardening, drift remediation)
- Support IR with rapid containment and evidence-collection automations
Skills
- 3+ years in automation engineering, security engineering, or security operations
- Strong scripting skills (Python preferred; PowerShell/JavaScript acceptable)
- Experience with automation/orchestration tools (Ansible, Itential, Aria Orchestrator, etc.)
- Hands-on API automation (REST/JSON, webhooks, OAuth2, tokens, mTLS)
- Understanding of SIEM concepts and SOC workflows
- Knowledge of IAM, endpoint security, network security, vulnerability management, and cloud security basics
- Experience with Git workflows and engineering best practices
- Strong documentation and communication skills
- Experience automating vulnerability management workflows
- Cloud security experience (AWS, Azure, GCP)
- Familiarity with container/Kubernetes security
- Experience automating EDR/XDR response actions
- Knowledge of ITSM tools (ServiceNow, Jira) and change management
Company Overview
Company H1B Sponsorship