Elastic · 6 hours ago
InfoSec - Senior Response Automation Engineer
United States
Full-time
Remote
Mid, Senior Level
$133K/yr - $211K/yr
3+ years expElastic, the Search AI Company, enables organizations to utilize their data effectively through their AI-driven platform. The Senior Response Automation Engineer will enhance and maintain workflows for threat detection and response, focusing on automation to improve security operations and efficiency.
AnalyticsCloud ComputingOpen SourceSaaSSearch EngineSoftware
Responsibilities
Drive the full lifecycle of automation development, from design to maintenance, to significantly advance our threat detection and response capabilities
Optimize and automate core SOC/IR analyst workflows, focusing on delivering rich alert context and efficient triage processes across all detection sources, including the Elastic Detection Engine
Establish automated feedback mechanisms that empower the Threat Detection team to continuously refine detections, identify false positives, and uncover new enrichment and automation opportunities
Build and manage integrations across security tools and platforms to create seamless workflows and enhance data correlation for comprehensive threat detection and response
Architect and implement automated incident response playbooks for effective containment, eradication, and recovery in various threat scenarios
Serve as a key automation expert, partnering with security analysts and incident responders to transform manual security operations into highly efficient, automated processes
Innovate and document best practices for detecting, responding to, and eradicating advanced threats, focusing on reducing overall time to response
Ensure the integrity and effectiveness of all workflows through rigorous testing and validation
Collaborate strategically with Threat Detection and Response leadership to identify critical areas for enhancement and execute impactful improvement initiatives
Qualification
Required
At least 3 years of experience related to automation engineering in a complex, global environment
Automation experience focused on security operations / incident response is a plus
Experience with automating with Security Operations and Response (SOAR) tools or alternative tools supporting similar workflows
Demonstrated ability to take complex / manual processes and solve them through automation
Demonstrated ability to think innovatively about solving critical security problems
Strong communication skills, with the ability to make sound decisions with limited information, and embrace challenging the status quo
Are eligible to work in DoD Impact Level 4 or above cloud service environments
Benefits
Health coverage for you and your family in many locations
Ability to craft your calendar with flexible locations and schedules for many roles
Generous number of vacation days each year
Increase your impact - We match up to $2000 (or local currency equivalent) for financial donations and service
Up to 40 hours each year to use toward volunteer projects you love
Embracing parenthood with a minimum of 16 weeks of parental leave
Company-matched 401k with dollar-for-dollar matching up to 6% of eligible earnings
Company
Elastic
Elastic builds software to make data usable in real time and at scale for search, logging, security, and analytics use cases.
1001-5000 employees
H1B Sponsorship
Elastic has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2024 (1)
2022 (2)
2021 (1)
Funding
Current Stage
Public CompanyTotal Funding
$162MKey Investors
New Enterprise AssociatesIndex VenturesBenchmark
2018-10-04IPO
2018-05-03Secondary Market
2016-07-01Series D· $58M
Leadership Team
Ashutosh Kulkarni
CEO
Shay Banon
Chief Technology Officer
Recent News
2026-01-22
2026-01-22
2026-01-20
Company data provided by crunchbase