SOC Automation Engineer

Bitdefender

Bitdefender is a cybersecurity leader delivering best-in-class threat prevention, detection, and response solutions worldwide. Guardian over millions of consumer, enterprise, and government environments, Bitdefender is one of the industry’s most trusted experts for eliminating threats, protecting privacy, digital identity and data, and enabling cyber resilience. With deep investments in research and development, Bitdefender Labs discovers hundreds of new threats each minute and validates billions of threat queries daily. The company has pioneered breakthrough innovations in antimalware, IoT security, behavioral analytics, and artificial intelligence and its technology is licensed by more than 180 of the world’s most recognized technology brands. Founded in 2001, Bitdefender has customers in 170+ countries with offices around the world. For more information, visit https://www.bitdefender.com

About the Role:

We are seeking a motivated and detail-oriented Senior Software Engineer to join our Security Operations Center (SOC) Automation Engineering team. This position offers the opportunity to work on cutting-edge security automation projects while contributing to the development and maintenance of our MDR product, particularly for our Security Orchestration, Automation, and Response (SOAR) platform.

Responsibilities:

Software Development: Build and maintain software solutions and workflows using Python within our SOAR platform to streamline security operations.

Infrastructure Development: Develop, deploy and manage infrastructure components across multiple Cloud environments (e.g. AWS, GCP etc.)

Monitoring and Troubleshooting: Monitor SOC automation processes and troubleshoot issues, ensuring timely resolution to maintain operational efficiency.

Collaboration: Work closely with senior engineers and cross-functional teams to gather requirements, implement solutions, and support ongoing projects.

Security and Compliance: Collaborate with the InfoSec team to address security vulnerabilities, manage access controls, and ensure compliance with SOC2 change management processes.

Documentation: Contribute to the creation and maintenance of technical documentation, including standard operating procedures and troubleshooting guides.

Continuous Learning: Stay updated with the latest trends and best practices in automation, cloud services, and cybersecurity to enhance skill sets and contribute to team innovation.

On-Call Support: Participate in a rotational on-call schedule to address high-priority incidents, ensuring minimal disruption to services.

Qualifications:

Education: Bachelor's degree in Computer Science, Information Technology, or a related field, or equivalent practical experience (5+ years of experience as a Software Development Engineer).

Technical Skills

Proficiency in at least one Object Oriented Programming Languages and good knowledge of Design Patterns and System Design (e.g. Python, Java, C#)

Familiarity with cloud platforms, preferably AWS.

Experience with working with containers and orchestration tools (Docker, Kubernetes etc.)

Understanding of Infrastructure as Code (IaC) concepts; exposure to tools like Terraform is a plus.

Knowledge of version control systems, such as Git.

Soft Skills:

Strong analytical and problem-solving abilities.

Effective communication skills, both written and verbal.

Ability to work collaboratively in a team-oriented environment.

Eagerness to learn and adapt to new technologies and challenges.

Preferred Qualifications:

Experience with containerization and orchestration tools, particularly Kubernetes.

Exposure to monitoring and logging tools, such as Prometheus or Grafana.

Understanding of security operations and incident response processes.

Nice to Have:

Experience with SOARs and/or SIEMs

Experience with SOC2 compliance and security best practices.

Knowledge of MongoDB and PostgreSQL.

Experience with AI/ML tools and integrating LLMs into operational workflows.