Cyber Fusion Center Platform Integration Lead

Job Description

We are seeking a dynamic and technically skilled Cyber Fusion Center Platform Integration Lead to drive the automation, integration and optimization of enterprise cybersecurity operations platforms. This role is ideal for a cybersecurity professional with a strong foundation in automation, scripting and security operations, who is excited to build scalable and resilient security capabilities across multiple domains of security operations.

This role will support the enhancement and stabilization of Data Loss Prevention (DLP) capabilities, with a focus on improving platform performance and operational effectiveness. As part of the Cyber Fusion Center, the position will also support automation and integration efforts across security operations, including SOC and EVM workflows, driving scalable and unified security capabilities.
The ideal candidate will bring a blend of hands-on engineering expertise with a background in cybersecurity automation, vulnerability research and security operations. This role emphasizes platform orchestration, workflow automation, API-driven integration, and software engineering principles to enhance detection, response, and overall cyber defense maturity.

Key Responsibilities:

• Lead configuration, integration, and continuous improvement of DLP platforms including Microsoft Purview, Microsoft Suite of tools (O365 and other Microsoft Security Stack), Zscaler, and related technologies.
• Partner with DLP analysts to streamline and automate investigation workflows.
• Design, implement, and refine DLP policies across endpoints, cloud services, and collaboration platforms.
• Design and implement automation workflows and scripts (e.g., PowerShell, Python, C#) to streamline alert triage, enrichment, incident response, and reporting across SOC, DLP, and EVM.
• Coordinate integration of tools and data sources across SOC, threat intelligence, endpoint, cloud and identity platforms to enable unified visibility and automated response capabilities for SOC, DLP and EVM teams.
• Partner with SOC and Threat Detection teams to develop, tune and automate detection use cases for Incident Response and Data Loss Protection teams to improve detection times.
• Leverage platform telemetry and security data to identify trends, improve detection capabilities and build dashboards that enhance situational awareness for risk visibility.
• Work with security engineering, IT, cloud and risk/compliance teams to ensure platforms are aligned with enterprise architecture and security strategy.
• Develop and maintain technical documentation, runbooks, and automation playbooks and contribute to internal training and knowledge sharing for CFC upskilling.

Required Qualifications:

• Bachelor's degree in computer science, Cybersecurity, or a related field.
• 5+ years of experience in cybersecurity, automation engineering or security platform engineering.
• Proficiency in scripting and automation tools (e.g. PowerShell, Python, C#).
• Experience integrating operating tools such as SIEM, EDR, secure web gateways and cloud security platforms.
• Understanding of security operations, including SOC workflows, DLP investigations, threat detection and incident response.
• Familiarity with API integrations, workflow automation, and Infrastructure-as-Code concepts.
• Excellent communication skills and ability to work cross-functionally

Preferred Qualifications:

• Experience in building or supporting Security Orchestration, Automation, and Response (SOAR) capabilities.
• Background in detection development, incident response and digital forensics.
• Experience in regulated industries such as healthcare or pharmaceuticals.
• Security certifications such as CISSP, GSEC or similar GIAC certifications.
• Familiarity with cloud security architecture and Microsoft 365 capabilities.

Required Skills:
Amazon S3, Cloud Access Security Broker (CASB), Collaborative Development, Cyber Threat Intelligence, Data Loss Prevention (DLP), Digital Forensics, Endpoint Detection and Response, Information Security, Information Technology Trends, Intellectual Property, Non-Disclosure Agreements, Penetration Testing, Security Incident Management, Security Operations, SLA Management, SOC Operations, Technical Writing, Technical Writing Documentation, Vulnerability Scanning

Preferred Skills:

Current Employees apply HERE

Current Contingent Workers apply HERE

US and Puerto Rico Residents Only:

Our company is committed to inclusion, ensuring that candidates can engage in a hiring process that exhibits their true capabilities. Please click here if you need an accommodation during the application or hiring process.

As an Equal Employment Opportunity Employer, we provide equal opportunities to all employees and applicants for employment and prohibit discrimination on the basis of race, color, age, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability status, or other applicable legally protected characteristics. As a federal contractor, we comply with all affirmative action requirements for protected veterans and individuals with disabilities. For more information about personal rights under the U.S. Equal Opportunity Employment laws, visit:

EEOC Know Your Rights

EEOC GINA Supplement

We are proud to be a company that embraces the value of bringing together, talented, and committed people with diverse experiences, perspectives, skills and backgrounds. The fastest way to breakthrough innovation is when people with diverse ideas, broad experiences, backgrounds, and skills come together in an inclusive environment. We encourage our colleagues to respectfully challenge one another's thinking and approach problems collectively.

Learn more about your rights, including under California, Colorado and other US State Acts

The salary range for this role is
$117,000.00 - $184,200.00

This is the lowest to highest salary we in good faith believe we would pay for this role at the time of this posting. An employee's position within the salary range will be based on several factors including, but not limited to relevant education, qualifications, certifications, experience, skills, geographic location, government requirements, and business or organizational needs.

The successful candidate will be eligible for annual bonus and long-term incentive, if applicable.

We offer a comprehensive package of benefits. Available benefits include medical, dental, vision healthcare and other insurance benefits (for employee and family), retirement benefits, including 401(k), paid holidays, vacation, and compassionate and sick days. More information about benefits is available at ;br>
You can apply for this role through (or via the Workday Jobs Hub if you are a current employee). The application deadline for this position is stated on this posting.

San Francisco Residents Only: We will consider qualified applicants with arrest and conviction records for employment in compliance with the San Francisco Fair Chance Ordinance

Los Angeles Residents Only: We will consider for employment all qualified applicants, including those with criminal histories, in a manner consistent with the requirements of applicable state and local laws, including the City of Los Angeles' Fair Chance Initiative for Hiring Ordinance

Search Firm Representatives Please Read Carefully
Merck & Co., Inc., Rahway, NJ, USA, also known as Merck Sharp & Dohme LLC, Rahway, NJ, USA, does not accept unsolicited assistance from search firms for employment opportunities. All CVs / resumes submitted by search firms to any employee at our company without a valid written search agreement in place for this position will be deemed the sole property of our company. No fee will be paid in the event a candidate is hired by our company as a result of an agency referral where no pre-existing agreement is in place. Where agency agreements are in place, introductions are position specific. Please, no phone calls or emails.

Employee Status:
Regular

Relocation:
No relocation

VISA Sponsorship:
No

Travel Requirements:
10%

Flexible Work Arrangements:
Hybrid

Shift:
1st - Day

Valid Driving License:
No

Hazardous Material(s):
N/A

Job Posting End Date:
05/20/2026
*A job posting is effective until 11:59:59PM on the day BEFORE the listed job posting end date. Please ensure you apply to a job posting no later than the day BEFORE the job posting end date.