CrawlJobs Logo

Lead SOAR Engineer

take2games.com Logo

Take-Two Interactive Software, Inc.

Location Icon

Location:
United States , Las Vegas

Category Icon
Category:
IT - Software Development

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

We are looking for a Lead Security Operations Engineer to design, implement, and lead our Security Orchestration, Automation, and Response (SOAR) platform. In this role, you'll be the technical leader responsible for building and optimizing our security automation capabilities. You will work with a diverse set of technologies, including various security tools, APIs, and cloud services, to streamline our security operations and enhance our incident response efficiency. Your expertise will directly contribute to safeguarding Take-Two and its labels systems, networks, and data.

Job Responsibility:

  • Lead the design, development, and maintenance of SOAR playbooks, workflows, and integrations with other security tools
  • Identify and implement automation opportunities to improve the speed and accuracy of security operations and incident response
  • Act as a domain expert for SOAR, providing technical guidance, mentorship, and support to the security team
  • Partner with other security teams to ensure SOAR capabilities align with the overall security strategy
  • Create and maintain comprehensive documentation for workflows and integrations, and develop reports to measure program success
  • Assist with SOAR tool migrations, document all system changes, and stay ahead of the latest SOAR and automation trends

Requirements:

  • 5+ years’ experience as a SOAR Engineer
  • Deep expertise in designing, building, and maintaining automated security workflows and playbooks using a SOAR platform
  • The ability to analyze complex security challenges, find opportunities to automate repetitive manual tasks, and develop data-driven solutions
  • Excellent written and verbal communication skills
  • Hands-on experience with a leading SOAR platform (Palo Alto Networks Cortex XSOAR, Tines or Splunk Enterprise Security) coupled with advanced scripting skills in Python

Nice to have:

  • Relevant industry certifications such as GCED, GCIH, GMON, CEH, etc. or other certifications from organizations like ISC2 or CompTIA
  • Proficiency in programming and scripting languages common to security such as Python, Go, Bash, or Powershell, Javascript
  • Knowledge of security frameworks including MITRE Att&ck, NIST, etc.
  • Prior experience leading a small team or a project
What we offer:
  • Medical (HSA & FSA), dental, vision, 401(k) with company match, employee stock purchase plan, commuter benefits, in-house wellness program, broad learning & development opportunities, a charitable giving platform with company match
  • Fitness allowance, employee discount programs, free games & events and stocked pantries

Additional Information:

Job Posted:
December 12, 2025

Employment Type:
Fulltime
Work Type:
Hybrid work
Icon
Take-Two Interactive Software, Inc. - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Lead SOAR Engineer

Senior Logging & Detection Engineer

We are currently seeking a Senior Logging & Detection Engineer to lead the techn...
Location
Location
Canada , Vancouver; Calgary; Toronto
Salary
Salary:
146200.00 - 197800.00 CAD / Year
clio.com Logo
Clio
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Senior-level expertise building and scaling enterprise-grade detection capabilities and security monitoring systems
  • Expert-level query language proficiency in at least two of the following: Elasticsearch/Lucene, SQL, KQL (Kusto), or SPL (Splunk), demonstrating advanced optimization techniques
  • Extensive Detection Engineering experience owning the full lifecycle of rules, alerts, and automated response workflows within a SIEM/SOAR environment
  • Advanced log analysis skills across diverse, large-scale data sources, including multi-cloud logs (AWS, Azure, GCP), network flows, and advanced security tool outputs
  • Deep dashboard and visualization expertise with tools like Kibana, Grafana, or Tableau, specifically for security metrics and executive reporting
  • Proven expertise in leading threat hunting efforts using log data to proactively identify and track sophisticated threats and anomalous behavior across the environment
  • Senior-level scripting and automation abilities (Python/Go/PowerShell), used to build custom tools, manage APIs, and drive detection automation at scale
  • Architectural experience integrating and optimizing SIEM platforms, SOAR tools, and security orchestration systems
  • Expert performance optimization skills covering query tuning, index design, data partitioning, and overall resource-efficient analytics on big data
  • Significant incident response experience providing expert-level technical analysis and forensic support during major security incidents
Job Responsibility
Job Responsibility
  • Lead the design and implementation of sophisticated, production-ready detection rules and queries across the ELK stack, security data lakes, and multi-cloud logging platforms
  • Architect and optimize complex search queries, aggregations, and analytics dashboards for high-velocity security monitoring, focusing on performance and cost efficiency
  • Design and build automated detection and response workflows (SOAR), ensuring seamless and reliable integration with critical incident response systems
  • Serve as the primary liaison with the threat intelligence team, developing and owning the framework to translate intelligence into scalable, actionable detection capabilities (e.g., MITRE ATT&CK coverage)
  • Establish and maintain a robust detection rule library, query templates, and lead the creation of security analytics playbooks for the wider team
  • Drive performance optimization and resource utilization strategies across petabyte-scale log datasets, including index design and data tiering
  • Develop and standardize custom visualizations, dashboards, and executive reporting capabilities for security stakeholders
  • Lead complex threat hunting operations, mentor junior team members on investigative techniques, and proactively refine detection logic to achieve near-zero false positive rates
  • Collaborate closely with the platform team to define the logging architecture roadmap based on future detection requirements and security observability goals
  • Proactively research emerging threats and attack patterns, translating novel techniques into strategic, forward-looking detection logic and advising security leadership
What we offer
What we offer
  • Top-tier health benefits, dental, and vision insurance
  • Hybrid work environment
  • Flexible time off policy, with an encouraged 20 days off per year
  • $2000 annual counseling benefit
  • RRSP matching and RESP contribution
  • Clioversary recognition program with special acknowledgement at 3, 5, 7, and 10 years
  • Fulltime
Read More
Arrow Right
New

Technical Engineer Lead

This role leads the Security Engineering team within ANS’s Security Operations C...
Location
Location
Salary
Salary:
Not provided
ans.co.uk Logo
ANS Group
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience managing or leading a technical security engineering team within an MSP, MSSP or SOC environment
  • Proven experience with Microsoft Security Suite (Sentinel, Defender XDR, Defender for Cloud) and Sentinel setup/integration
  • Strong technical expertise with Microsoft Azure (Azure AD, Lighthouse, and security architecture)
  • Proven experience configuring connectors, setting up data ingestion, and tuning detection rules
  • Experience with Google Chronicle SOAR or other SOAR/SIEM platforms
  • Comfortable writing or modifying KQL queries, understanding detection logic, and debugging enrichment issues
  • Excellent communication and interpersonal skills, able to translate technical activity into customer-facing updates
  • High emotional intelligence able to support and guide a stretched team, while holding standards and focus
  • Ability to set priorities, manage competing demands and keep work structured in fast-paced environments
  • Prior exposure to cost control in log ingestion or cloud service consumption
Job Responsibility
Job Responsibility
  • Lead and schedule the SOC Engineering team to ensure clarity, consistency and manageable workloads across onboarding and live services
  • Own the delivery of engineering activity during customer onboarding and transition, including Sentinel connector setup, Microsoft Defender integration, rule tuning, and SOAR playbook deployment
  • Ensure structured service handover to SOC Analysts post-onboarding, with clear technical documentation and expectations
  • Act as escalation point for complex engineering-led issues in live environments, maintaining SLAs and platform health
  • Drive continual improvement in detection logic, rule effectiveness, enrichment, automation and engineering playbooks
  • Provide technical leadership in core tooling: Microsoft Sentinel, Defender for Endpoint, Defender for Cloud, Entra ID and integration platforms. Google Chronicle SOAR (technical ownership sits with SecDevOps Lead)
  • Champion best practices in customer environment configuration, data ingestion, and engineering change control
  • Bring structure to engineering reporting and team outputs, with clarity on ownership, outcomes, and next steps
  • Support the development of junior engineers, setting standards for communication, time management and delivery focus
What we offer
What we offer
  • 25 days’ holiday, plus you can buy up to 5 more days
  • Birthday off
  • An extra celebration day
  • 5 days’ additional holiday in the year you get married
  • 5 volunteer days
  • Private health insurance
  • Pension contribution match and 4 x life assurance
  • Flexible working and work from anywhere for up to 30 days per year (some exceptions)
  • Maternity: 16 weeks’ full pay, Paternity: 3 weeks’ full pay, Adoption: 16 weeks’ full pay
  • Company social events
Read More
Arrow Right

Security Engineer - Detection Engineering, Surface Coverage

Meta Security is looking for a Security Engineer with experience in threat model...
Location
Location
United States , Bellevue
Salary
Salary:
122000.00 - 181000.00 USD / Year
meta.com Logo
Meta
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 2+ years of experience in Detection and Response Engineering or similar Security Engineering role
  • Bachelor's degree or equivalent experience in Cyber Security
  • Experience building complex automations and integrations using Security Orchestration, Automation and Response platforms
  • Experience designing systems used for responding to both external and insider threats
  • Experience analyzing network and host-based security events
  • Knowledge of networking technologies, specifically Transmission Control Protocol (TCP)/Internet Protocol (IP) and the related protocols
  • Knowledge of operating systems, file systems, and memory structures on Windows, MacOS and Linux
  • Coding/scripting experience in one or more general purpose languages
  • Experience with attacker tactics, techniques, and procedures
Job Responsibility
Job Responsibility
  • Lead cross-functional projects to improve our functionalities to effectively detect and respond to security incidents
  • Review security architecture of large-scale custom and commercial systems and under your own initiative propose logging, detection and prevention controls
  • Perform TTP-based Threat Modeling for a wide variety of assets including endpoints, mobile, servers, internal services, public & private cloud environments and networking equipment
  • Perform analysis against logs from a variety of sources (e.g., individual host logs, network traffic logs) to identify potential threats and detection ideas
  • Build response workflows and actions that auto-resolve false positives and provide context scaling our capacity to investigate
  • Support security incident response in a cross-functional environment and drive incident resolution
  • Design and implement attack testing automation to validate detection coverage
  • Build logging pipelines using our custom datasets and infrastructure
What we offer
What we offer
  • bonus
  • equity
  • benefits
Read More
Arrow Right
New

Senior Security Investigator

The CyberSecurity Incident Response team (CIRT) is at the forefront of protectin...
Location
Location
United States , Seattle; San Francisco; Sunnyvale
Salary
Salary:
180000.00 - 200000.00 USD / Year
uber.com Logo
Uber
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Information Security, or a related field.
  • 5+ years of experience in Security Investigations, Incident Response, Threat Hunting, or Digital Forensics within large-scale or high-risk environments.
  • Proven expertise with forensic tooling, log analysis, SIEM platforms, EDR solutions, and cloud investigation workflows (AWS/GCP/Azure).
  • Strong understanding of attacker TTPs, modern threat landscape, and frameworks like MITRE ATT&CK.
  • Hands-on experience building automation using Python, APIs, SOAR, or equivalent frameworks.
  • Ability to lead complex investigations end-to-end and communicate findings effectively to senior leadership.
  • Experience running or contributing to large cross-company security projects.
Job Responsibility
Job Responsibility
  • Lead complex security investigations end-to-end and perform deep forensic analysis across endpoints, cloud environments, identity systems, networks, and application logs to uncover root cause and attack paths.
  • Own & Build automation and tooling to accelerate evidence collection, log enrichment, triage workflows, and decision-making at global scale.
  • Improve detection and response capabilities by partnering with Threat Intelligence, Detection Engineering, and Platform teams.
  • Lead major cross-functional security initiatives that strengthen investigative readiness, digital forensics, cloud incident response, and threat-hunting capabilities.
  • Mentor and develop investigators and analysts, providing technical guidance, reviewing casework, and elevating investigative rigor.
  • Continuously evolve investigation methodology by analyzing trends, identifying gaps, and embedding lessons learned back into the security ecosystem.
What we offer
What we offer
  • Eligible to participate in Uber's bonus program
  • May be offered an equity award & other types of comp
  • Eligible for various benefits (details at provided link)
  • Fulltime
Read More
Arrow Right
New

Sr. Staff Security Engineer

Our mission is to protect, defend, and secure Uber’s products, infrastructure an...
Location
Location
United States , Sunnyvale; Seattle; New York
Salary
Salary:
267000.00 - 297000.00 USD / Year
uber.com Logo
Uber
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s Degree or equivalent in Computer Science, Engineering, Information Security or related field
  • 10+ years full-time work experience in security engineering, with a strong focus on security defense and incident response
  • Deep technical expertise in multiple security domains, such as network security, endpoint security, cloud security (GCP, OCI, Azure, AWS), and identity and access management
  • Strong scripting and automation skills (e.g., Python, PowerShell, Bash, Golang) are highly desirable
  • Proven experience designing, implementing, and managing complex security solutions at an enterprise level
  • Excellent analytical and problem-solving skills, with the ability to diagnose and resolve complex security issues
  • A proactive and results-oriented mindset with a passion for staying ahead of the evolving threat landscape
  • Experience leading technical security projects and mentoring other engineers
  • Excellent communication, collaboration, and interpersonal skills, with the ability to effectively communicate technical information to diverse audiences
Job Responsibility
Job Responsibility
  • Lead the technical direction and architecture of our cyber security defense capabilities, including areas such as enterprise security posture management, threat detection and response, and vulnerability management
  • Design and implement robust and scalable security solutions leveraging a diverse range of technologies (e.g., SIEM, EDR, SOAR, cloud security platforms, IAM)
  • Lead incident response efforts, including investigation, containment, and recovery activities. Perform post-incident analysis and recommend improvements to prevent future occurrences
  • Proactively research and evaluate emerging security threats, technologies, and trends, and provide recommendations for their adoption to enhance our security posture
  • Collaborate effectively with cross-functional teams, including Engineering, IT, Legal, and Compliance, to integrate security considerations into the development lifecycle and business processes
  • Mentor and provide technical guidance to junior security engineers, fostering a culture of continuous learning and growth within the team
  • Contribute to the development and automation of security tools and processes to improve efficiency and effectiveness
  • Communicate complex security concepts and risks effectively to both technical and non-technical audiences
  • Participate in security audits and compliance initiatives, providing technical expertise and ensuring adherence to security standards
What we offer
What we offer
  • eligibility to participate in Uber's bonus program
  • may be offered an equity award & other types of comp
  • eligible for various benefits
  • Fulltime
Read More
Arrow Right

Principal Software Engineer

Principal Software Engineer. We are looking for a highly skilled Principal Softw...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's or Master's degree in Computer Science, Information Systems, or equivalent experience
  • 8+ years of professional software engineering experience, including significant architectural ownership, modeling, domain-driven design, and building distributed systems
  • Strong engineering proficiency with .NET Core (deep understanding of internals, patterns, application architecture)
  • Experience developing and maintaining SOAR system components and control planes
  • Excellent analytical and problem solving skills
  • Experience designing and implementing APIs across multiple technologies (REST, GraphQL, gRPC, etc.)
  • Experience with streaming/event technologies (Kafka, Kinesis, Pub/Sub, etc.)
  • Experience building secure, resilient systems with strong attention to failure modes and operational readiness
  • Designing and integrating software systems running on multiple platform types into overall architecture
Job Responsibility
Job Responsibility
  • Design and build system services using modern engineering practices, with a deep understanding of runtime behavior, concurrency, messaging, and performance patterns
  • Implement APIs across multiple styles and standards (REST, GraphQL, gRPC, etc.), ensuring consistent patterns and a maintainable service ecosystem
  • Develop and maintain management/control-plane components that support complex domain and containment logic
  • Build reliable, well-modeled systems that support policy management, orchestration workflows, and stateful service interactions
  • Deploy, operate, and optimize software in containerized environments using Docker and Kubernetes
  • Ensure engineering excellence through automated testing, performance tuning, and robust error-handling strategies
  • Act as a senior technical leader and mentor within the engineering team
  • Lead design reviews, architecture discussions, and cross-team engineering initiatives
  • Work closely with product managers, security teams, and platform engineers to deliver aligned and scalable solutions
  • Communicate architectural decisions, trade-offs, and long-term implications to both technical and non-technical stakeholders
What we offer
What we offer
  • Health & Wellbeing
  • Personal & Professional Development
  • Unconditional Inclusion
Read More
Arrow Right

Partner Solutions Architect

As a Partner Solutions Architect you will be the expert for our Cortex portfolio...
Location
Location
Japan , Tokyo
Salary
Salary:
Not provided
paloaltonetworks.com Logo
Palo Alto Networks
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years experience in Security Operations or pre-sales/sales engineering within SIEM, SOAR, SOC, and/or XDR/EDR environments
  • SIEM, SOAR and SOC design, deployment, and/or pre-sales experience highly desirable
  • Experience in working with partners, demonstrating problem-solving skills and a can-do attitude
  • Solid understanding of Security Operations Center processes
  • Advanced knowledge of SIEM and/or SOAR solutions
  • This is a field sales position where travel requirements may be required to support in person customer meetings, please discuss with the recruiter on the specifics for this position
  • Proficient in Japanese, Intermediate level in English
Job Responsibility
Job Responsibility
  • Collaborate with Cortex DC, Ecosystem SE and Global Partner Solution Architect teams to recommend and develop partner solutions within your assigned specialization area
  • Present to partners as our expert at all levels in the partner hierarchy, from practitioner to senior leadership
  • As the main technical point of contact for Cortex, you will assist and collaborate to respond effectively to RFIs/RFPs
  • Lead and support partner demonstrations that showcase our unique value proposition
  • Scope and lead Proof of Value (PoV) projects for prospective partners based on best practices to ensure technical win in your assigned opportunities
  • Drive high technical validation and PoV win rates within your assigned specialization area
  • Responsible for discussing and highlighting product alignment with partner requirements and differentiation
  • Architect solutions that will help our partners strengthen and simplify their security posture
  • Document High-Level Design and Key Use Cases to ensure proper implementation and value realization of Palo Alto Networks Solutions
  • Help our partners build and develop further their services around Cortex solutions
Read More
Arrow Right

Manager, Security Operations & Engineering

We’re seeking a strategic and hands-on Manager of Security Operations & Engineer...
Location
Location
United States , Birmingham
Salary
Salary:
156000.00 - 223000.00 USD / Year
daxko.com Logo
Daxko
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years in security operations and/or engineering
  • At least 3 years in a leadership or management role
  • Proven success building or maturing SOC and incident response programs in hybrid cloud and on-premise environments
  • Deep expertise in IAM, cloud security (AWS/Azure), vulnerability management, and endpoint protection
  • Hands-on experience with SIEM/SOAR, threat intelligence platforms, IOCs/TTPs, and automation
  • Strong project management, communication, and stakeholder engagement skills
  • A passion for mentoring and growing high-performing technical teams
Job Responsibility
Job Responsibility
  • Lead and inspire a team of security engineers and SOC analysts focused on cloud security, IAM, vulnerability management, and tooling
  • Hire, coach, and retain top talent by fostering a collaborative and growth-oriented culture
  • Conduct regular performance evaluations and handle team matters with fairness and professionalism
  • Drive the daily execution of security operations and oversee a dynamic SOC environment
  • Develop and mature incident response processes—create playbooks, run tabletop exercises, and lead live response to events
  • Define and report on meaningful metrics and KPIs to assess security posture and continuously improve performance
  • Prioritize and lead cross-functional security projects aligned with business risk and strategic priorities
  • Own and optimize the usage of key security platforms including SIEM, SOAR, EDR, and threat intelligence tools
  • Partner with IT, Engineering, DevOps, and GRC to enhance detection capabilities, streamline response, and reduce organizational risk
  • Promote automation and modernize workflows to increase efficiency and reduce alert fatigue
What we offer
What we offer
  • Flexible paid time off
  • Affordable health, dental, and vision insurance options
  • Monthly fitness reimbursement
  • 401(k) matching
  • New-Parent Paid Leave
  • Casual work environments
  • Remote work
  • Fulltime
Read More
Arrow Right
Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy