Security Data Engineering and Automation Lead - REMOTE

Description

Binary Defense is seeking a  Security Data Engineering and Automation Lead.

In this role, you will drive the design, implementation, and maintenance of a unified data model across the organization. Your responsibilities will span data engineering, automation, integration, and advanced detection engineering, helping our team stay ahead of emerging threats through cutting-edge technologies and processes.

Responsibilities

• Data Engineering and Integration
  • Build, implement, and maintain a  unified data model for the organization.
  • Ensure all ingested data adheres  to the defined data model standards.
  • Design and architect a centralized  security data lake to support machine learning and AI-driven threat  detection.
• Automation Development
  • Build and implement automation  pipelines for deploying, managing, and configuring detections across  various security platforms (e.g., SIEMs, EDRs).
  • Create CI/CD pipelines to  automatically push detection rules to various platforms, converting them  to target platform syntaxes.
• Detection Engineering and Security Automation
  • Collaborate with stakeholders to  develop detection engineering pipelines and automate repetitive  tasks.
  • Architect and implement SOAR  (Security Orchestration, Automation, and Response) functions to  interact with EDR technologies and enable SOC operations.
• Collaboration and Leadership
  • Partner with cross-functional  teams to ensure integrations and automations align with organizational  goals.
  • Work closely with data science  teams to support machine learning initiatives for advanced threat  detection.
  • Lead projects with strong  communication and organizational skills to meet deliverables.

Requirements

• Proficiency in Python for  automation, data integration, and pipeline development
• Strong understanding of REST  APIs for building integrations across security platforms
• Deep experience with data  management, ETL processes, and data pipeline orchestration  tools
• Expertise in CI/CD tools and  pipelines, such as GitLab CI/CD, Jenkins, Azure  DevOps, or GitHub Actions, including the ability to:
• Design and implement automated   build, test, and deployment pipelines.
• Optimize CI/CD workflows for   scalability and reliability in security operations.
• Integrate security-focused   pipelines for continuous monitoring and validation of detection rules.
• Familiarity with infrastructure-as-code  (IaC) tools like Terraform, CloudFormation, or Ansible  to automate deployments.
• Experience with containerization  platforms like Docker and orchestration tools like Kubernetes  for scalable automation.
• Expertise in SIEM technology  (e.g., Splunk, Sentinel) and EDR tools (e.g., CrowdStrike,  SentinelOne).
• Strong understanding of SOAR  platforms (e.g., Cortex XSOAR, Siemplify) for automating security  workflows.
• Strong project management  skills, with the ability to prioritize tasks and meet deadlines in  fast-paced environments.
• Excellent communication  skills, capable of translating technical concepts to non-technical  stakeholders.
• Highly organized and capable of  documenting processes and standards effectively.

Preferred

• Familiarity with implementing GitOps workflows for security automation.
• Knowledge of detection engineering frameworks such as Sigma, YARA, or YARA-L.
• Experience with building pipelines that incorporate static code analysis tools (e.g., SonarQube) or security testing tools into CI/CD workflows.
• Certification in related technologies (e.g., AWS Certified DevOps Engineer, Azure DevOps Engineer Expert).

About Binary Defense

Binary Defense is a trusted leader in security operations, supporting companies of all sizes to proactively monitor, detect and respond to cyberattacks. The company offers a personalized Open XDR approach to Managed Detection and Response, advanced Threat Hunting, Digital Risk Protection, Phishing Response, and Incident Response services, helping customers mature their security program efficiently and effectively based on their unique risks and business needs.

With a world-class 24/7 SOC, deep domain expertise in cyber, and sophisticated technology, hundreds of companies across every industry have entrusted Binary Defense to protect their business. Binary Defense gives companies actionable insights within minutes not hours, the confidence in their program to be resilient to ever-changing threats, and the time back that matters most to their business.

Binary Defense is also the Trusted Cybersecurity Partner of the Cleveland Browns and partners with PGA TOUR players. For more information, visit our website, check out our blog, or follow us on LinkedIn.

Binary Defense offers competitive medical, dental and vision coverage for employees and dependents, a 401k match which vests every payroll, a flexible and remote friendly work environment, as well as training opportunities to expand your skill set (to name a few!). If you’re interested in joining a growing team with great perks, we encourage you to apply!