SOAR Engineer

Company Description

Securado focuses on developing and implementing Cyber Security solutions MSSP servi for various sectors in the Sultanate of Oman. The company aims to prevent cybersecurity incidents and protect valuable information for organizations ranging from government bodies to businesses. Securado collaborates with clients to establish cost-effective security control environments and offers business continuity and disaster recovery solutions as part of its security portfolio.

Role Description

We are seeking a skilled and motivated SOAR Engineer with a solid foundation in security operations and hands-on experience with Cortex XSOAR (formerly Demisto). The ideal candidate will have deep knowledge of cybersecurity principles, excellent scripting skills (especially in Python), and the ability to design, develop, and maintain automation playbooks to optimize our incident response and security workflows.

Key Responsibilities

• Design, develop, and maintain automation playbooks and integrations within Cortex XSOAR.
• Collaborate with SOC analysts and incident responders to identify automation opportunities.
• Integrate SOAR with various security tools (SIEM, threat intel platforms, firewalls, etc.).
• Optimize and enhance existing playbooks for improved efficiency and response time.
• Develop and maintain custom scripts and automation components primarily in Python.
• Ensure playbooks adhere to organizational security standards and compliance requirements.
• Analyze security incidents and contribute to continuous improvement of detection and response capabilities.
• Document processes, configurations, and technical procedures clearly and concisely.

Required Qualifications

• Bachelor's degree in Computer Science, Information Security, or related field (or equivalent experience).
• 3+ years of experience in cybersecurity or security operations.
• 2+ years of experience working with Cortex XSOAR or similar SOAR platforms.
• Strong proficiency in Python (including REST API integration, JSON handling, etc.).
• In-depth knowledge of cybersecurity concepts (e.g., incident response, threat intelligence, malware analysis, MITRE ATT&CK).
• Experience working with SIEM tools, threat intel platforms, EDRs, firewalls, and ticketing systems.
• Solid understanding of HTTP, DNS, SMTP, authentication protocols, and common attack vectors.

Preferred Qualifications



• Cortex XSOAR Certification (e.g., PCSAE) is a plus.
• Experience with other scripting or automation tools (e.g., PowerShell, Bash).
• Familiarity with incident response frameworks and NIST standards.
• Exposure to DevOps or CI/CD concepts in a security context.