Remote SOAR Engineer

Piper Companies is seeking a SOAR Engineer to support a large public university system expanding its security automation and operations program. The SOAR Engineer will be responsible for Python automation, SIEM/SOAR integration, and MITRE ATT&CK–aligned detection development. This role is fully remote.

Responsibilities of the SOAR Engineer include:

• Build and optimize SOAR playbooks using advanced Python automation.
• Integrate SIEM and SOAR platforms across the university environment.
• Create and maintain Linux-based automation processes.
• Participate in a large-scale deployment alongside a full cybersecurity team.
• Apply MITRE ATT&CK and similar frameworks to enhance detection and response.
• Collaborate with internal security teams to enable automation-first SOC workflows.

Qualifications for the SOAR Engineer include:

• Strong Python automation experience.
• Hands-on experience with SOAR platforms (XSOAR, Splunk SOAR, etc.).
• Strong Linux background.
• Working knowledge of SIEM systems.
• Experience with MITRE ATT&CK and security frameworks.
• Prior experience supporting enterprise-scale security operations.

Compensation for the SOAR Engineer includes:

• Salary: $135,000 - $150,000
• Comprehensive Benefits: Medical, Dental, Vision, 401K, PTO, Sick Leave as required by law, and Paid Holidays.

This job opens for applications on 1/1/2026. Applications for this job will be accepted for at least 30 days from the posting date.

Keywords:

#LI‑MM1 #Remote

SOAR, Python, Linux, MITRE ATT&CK, SIEM, Security Automation, Playbooks, Detection Engineering, Higher Education Security