Security Engineer – AI & SOAR Integration jobs in United States
cer-icon
Apply on Employer Site
company-logo

SOSi · 4 months ago

Security Engineer – AI & SOAR Integration

positionPearl Harbor, Hawaii
timeFull-time
remoteOnsite
seniorityMid, Senior Level
date5+ years exp

SOSi is seeking a Security Engineer – AI & SOAR Integration to join their forward-leaning cyber team in Hawaii, where mission meets innovation. The role involves leading the deployment, tuning, and maintenance of AI-assisted detection and response platforms and SOAR automation pipelines, ensuring they are resilient, effective, and compliant.

ConsultingGovernmentInformation Technology
badNo H1BnoteSecurity Clearance Requirednote

Responsibilities

Deploy, configure, and maintain AI-enabled monitoring and response platforms to support analyst operations and after-hours coverage
Develop and tune SOAR automation pipelines for triage, containment, escalation, and recovery
Ensure automation logic is explainable, logged, and compliant with DoD and NSOC SOPs
Integrate AI workflows with SIEM, EDR, and NTA telemetry for real-time monitoring and enrichment
Validate AI-assisted detections with analyst feedback, adjusting rules to reduce false positives
Serve as Tier 3 escalation point for automation- or tool-related incidents
Provide forensic data and log enrichment to support containment and response
Collaborate with Detection Engineers to build and validate custom detection rules and playbooks
Maintain current knowledge of emerging AI/automation technologies, threats, and adversary tactics
Participate in tabletop and live security exercises to validate AI & SOAR readiness
Document engineering changes, playbook updates, and lessons learned for continuous improvement

Qualification

AI-assisted detectionSOAR automationSIEM experienceCybersecurity engineeringScripting/automationAdvanced cybersecurity certificationsCommunication skillsTeam collaboration

Required

Active in scope SECRET clearance or the ability to obtain SECRET eligibility
Bachelor's Degree in Cybersecurity, Computer Science, Information Systems, or related discipline (or equivalent experience/certifications)
5+ years of cybersecurity engineering or SOC/NSOC experience
DoD 8140 Intermediate certification (GFACT or CEH or Cloud+ or CySA+ or PenTest+ or SSCP or Security+ or GSEC)
Hands-on experience with SIEM, EDR, SOAR platforms
Scripting/automation experience (Python, PowerShell, REST APIs)
Strong written and verbal communication skills for reporting, documentation, and escalation

Preferred

Active Top Secret clearance with ability to obtain/maintain TS/SCI
Prior experience working with AI-enabled SOC platforms or AI/ML-assisted detection technologies
Experience designing or managing SOAR workflows (Cortex XSOAR, Splunk SOAR, Phantom, etc.)
Vendor certifications (Elastic Certified Engineer, Palo Alto, Tenable, Splunk, etc.)
Advanced cybersecurity certifications (GCIA, GCTI, CEH, or GCIH)

Company

SOSi

twittertwittertwitter
Glassdoor3.0
company-logo
SOSi solves the challenges of the modern mission.
dateFounded in 1989
location
New York, New York, USA
people-size1001-5000 employees
web-link
http://www.sosi.com

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
Jim Edwards
Chief Growth Officer
linkedin

Recent News

The Latest Tech News from Techreport
ICE Deploys AI to Watch What You Post Online
2025-11-01
EIN Presswire
NaVOBA Announces the 2025 Best Corporations for Veteran's Business Enterprises®
2025-10-06
citybiz
SOSi Appoints Andre Watson as Senior Account Executive
2025-08-21
Company data provided by crunchbase