Security Automation Engineer

Job Description:

DXC Technology (NYSE: DXC) empowers global companies to operate their mission-critical systems and operations while modernizing IT, optimizing data architectures, and ensuring security and scalability across public, private, and hybrid clouds. Many of the world’s largest companies and public sector organizations trust DXC to deliver exceptional service across the Enterprise Technology Stack, driving performance, competitiveness, and customer experience. Discover more about our commitment to excellence for customers and colleagues at DXC.com.

At DXC, we harness the power of technology to deliver essential IT services that help our clients modernize operations and drive innovation across their entire IT infrastructure. Our services span the Enterprise Technology Stack and include business process outsourcing, insurance, analytics and engineering, applications, security, cloud, IT outsourcing, and modern workplace solutions

Position Overview:

We are seeking a highly skilled Security Automation Engineer to join our dynamic Security Operations Center (SOC). This role is ideal for a candidate with hands-on experience in SOAR (Security Orchestration, Automation, and Response) platforms, a strong background in SOC operations, and a passion for integrating AI-driven solutions into cybersecurity workflows.

You will be responsible for designing, developing, and maintaining automation playbooks, integrating threat intelligence, and enhancing incident response capabilities through scripting and AI technologies.

Key Responsibilities:

• Design, develop, and maintain SOAR playbooks to automate incident response and threat detection workflows.
• Collaborate with SOC analysts to identify use cases for automation and improve operational efficiency.
• Integrate AI and machine learning models into SOC operations to enhance threat detection, triage, and response.
• Develop and maintain custom scripts and tools using Python or similar programming languages.
• Work closely with threat intelligence, incident response, and engineering teams to ensure seamless integration of automation tools.
• Continuously evaluate and improve existing automation processes and playbooks.
• Document playbooks, workflows, and integration processes for knowledge sharing and compliance.
• Stay current with emerging threats, technologies, and best practices in security automation and AI.

Required Qualifications:

• 7+ years of experience working in a Security Operations Center (SOC) environment.
• Proven experience with SOAR platforms (e.g., Palo Alto XSOAR, Splunk SOAR, IBM Resilient, etc.).
• Strong programming skills in Python (or similar languages such as PowerShell, JavaScript).
• Experience developing and deploying automation playbooks and custom use cases.
• Familiarity with SIEM platforms, threat intelligence feeds, and incident response processes.
• Experience integrating AI/ML models into security workflows is highly desirable.
• Solid understanding of cybersecurity principles, threat landscapes, and attack vectors.
• Excellent problem-solving skills and the ability to work independently or as part of a team.

Preferred Qualifications:

• Certifications such as GCIA, GCIH, GCFA, CEH, or similar.
• Experience with REST APIs, JSON, and scripting for system integrations.
• Familiarity with cloud security (AWS, Azure, GCP) and DevSecOps practices.
• Knowledge of MITRE ATT&CK framework and threat hunting methodologies.

What We Offer:

• Competitive salary and benefits package
• Flexible work environment (remote/hybrid options)
• Opportunities for professional development and certification
• A collaborative and innovative team culture

DXC is an equal opportunity employer. We welcome the many dimensions of diversity. Accommodation of special needs for qualified candidates may be considered within the framework of the DXC Accommodation Policy.

In addition, DXC Technology is committed to working with and providing reasonable accommodation to qualified individuals with physical and mental disabilities. If you need assistance in filling out the employment application or require a reasonable accommodation while seeking employment, please e-mail AODA Canada Requests.

Note: This option is reserved for applicants needing a reasonable accommodation related to a disability.

At DXC Technology, we believe strong connections and community are key to our success. Our work model prioritizes in-person collaboration while offering flexibility to support wellbeing, productivity, individual work styles, and life circumstances. We’re committed to fostering an inclusive environment where everyone can thrive.

Recruitment fraud is a scheme in which fictitious job opportunities are offered to job seekers typically through online services, such as false websites, or through unsolicited emails claiming to be from the company. These emails may request recipients to provide personal information or to make payments as part of their illegitimate recruiting process. DXC does not make offers of employment via social media networks and DXC never asks for any money or payments from applicants at any point in the recruitment process, nor ask a job seeker to purchase IT or other equipment on our behalf. More information on employment scams is available here.