Cybersecurity Automation Engineer- Principal

Description

Summary:

We are seeking a seasoned Cybersecurity Automation Engineer, Principal with deep expertise in cybersecurity automation. This role is pivotal in scaling our security operations, enhancing threat response, and ensuring compliance through intelligent automation across our digital infrastructure.

Duties & Responsibilities:

• Design and implement automation for security operations (SecOps), including threat detection, incident response, and vulnerability management
• Develop and maintain playbooks for SOAR (Security Orchestration, Automation, and Response) platforms such as Splunk SOAR, Palo Alto XSOAR, or Microsoft Sentinel
• Design, develop, and maintain scalable automation frameworks for Cybersecurity operations
• Automate compliance checks and reporting for frameworks like NIST, ISO 27001, and CIS Controls
• Integrate security tools (SIEM, EDR, firewalls, IAM) into automated workflows
• Collaborate with cybersecurity, DevOps, and infrastructure teams to embed security into CI/CD pipelines
• Lead initiatives to reduce manual effort in security monitoring, alert triage, and remediation
• Lead automation strategy and mentor junior engineers
• Participation in rotating on-call schedule

Basic Qualifications:

• Bachelor's or Master's degree in Computer Science, Cybersecurity, Information Technology
• 8+ Years of experience in IT automation,
• 5 Years in a Cybersecurity-focused role
• 4 Years Hands-on experience with SOAR platforms and security APIs

Preferred Qualifications:

• Expert level knowledge of core networking protocols including BGP, DNS, HTTP/S, DNS, etc.
• Expert level knowledge of operating systems, e.g. Windows, Linux, & Unix
• Expert level network troubleshooting skills utilizing packet capture/analysis packages such as Wireshark, TCPdump, etc
• Excellent customer facing communication skills (both written and verbal)
• Ability to research, evaluate, and devise course of action for security hardware/software and tools to make overall impact on the enterprise's existing security environment
• Strong scripting skills (Python, PowerShell, Bash) for security automation
• Deep understanding of cybersecurity principles, threat landscapes, and incident response
• Familiarity with cloud security automation (AWS, Azure, Google Cloud Platform)
• Proven track record of designing and implementing automation solutions across enterprise environments

#Hybrid

#LI-SG1

#LI-BM1

Exempt Status: (Yes = not eligible for overtime pay) (No = eligible for overtime pay)
Yes

Workplace Type:
Office

Our Approach to Office Workplace Type

Certain positions outside our branch network may be eligible for a flexible work arrangement. We're combining the best of both worlds: in-office and work from home. Our approach enables our teams to deepen connections, maintain a strong community, and do their best work. Remote roles will also have the opportunity to come together in our offices for moments that matter. Specific work arrangements will be provided by the hiring team.

Huntington will not sponsor applicants for this position for immigration benefits, including but not limited to assisting with obtaining work permission for F-1 students, H-1B professionals, O-1 workers, TN workers, E-3 workers, among other immigration statuses. Applicants must be currently authorized to work in the United States on a full-time basis.

Huntington is an Equal Opportunity Employer.

Tobacco-Free Hiring Practice: Visit Huntington's Career Web Site for more details.

Note to Agency Recruiters: Huntington will not pay a fee for any placement resulting from the receipt of an unsolicited resume. All unsolicited resumes sent to any Huntington colleagues, directly or indirectly, will be considered Huntington property. Recruiting agencies must have a valid, written and fully executed Master Service Agreement and Statement of Work for consideration.