Senior DevOps Engineer, Security Automation

Role: Senior DevOps Engineer, Security Automation
Location: Montvale, NJ/ Remote

Role Overview:

We are seeking a highly motivated and experienced Senior DevOps Engineer to join our dynamic team. In this role, you will be a key player in designing and implementing our next-generation security automation capabilities. You will take the lead on two critical initiatives: building a parameterized security detection catalog using Terraform and YARA-L, and developing an Infrastructure-as-Code (IaC) catalog of SOAR automation playbooks using Terraform and Python.

The ideal candidate is a senior-level engineer who can operate independently, design scalable solutions, and has a strong passion for leveraging automation to solve complex security challenges. You will work within our established Azure DevOps framework to deploy and manage these solutions across multiple client instances on Google Cloud.

Core Responsibilities:

• Lead the design, development, and implementation of a parameterized, IaC-based security detection catalog using Terraform and YARA-L for Google SecOps.
• Lead the design, development, and implementation of a reusable IaC catalog of Chronicle SOAR automation playbooks using Terraform and Python.
• Create and manage environment-specific parameter files to enable the centralized, scalable deployment of detections and playbooks to any client instance.
• Develop and maintain CI/CD pipelines in Azure DevOps to automate the testing, deployment, and management of the detection and automation catalogs.
• Collaborate with team members to ensure solutions are robust, scalable, and well-documented.
• Instruct and mentor peers on new frameworks and processes as they are developed.

Required Skills & Experience:

• 5+ years of experience in a DevOps or infrastructure engineering role, with a demonstrated increase in responsibilities.
• Expert-level proficiency with Terraform for managing cloud infrastructure as code.
• Strong proficiency in Python for scripting and automation, particularly for interacting with REST APIs.
• Deep experience with Azure DevOps, including Repos for source control and Pipelines for CI/CD.
• Solid understanding of security detection concepts and experience with query or rule languages (e.g., YARA-L, Snort, KQL). Prior YARA-L experience is a plus, but not required.
• Experience with DevOps practices including Git, configuration management, and automated testing.
• Strong understanding of cloud identity concepts (Workforce Identity Federation, SAML) and core cloud security and networking principles (IAM, VPCs, firewall rules).

Preferred Skills & Experience:

• Experience with Google SecOps (Chronicle SIEM and SOAR).
• Experience working in a multi-tenant or MSSP environment.
• Certification: Google Cloud Professional Cloud DevOps Engineer or Professional Cloud Security Engineer.