SOC Engineer

About CyberArk:
CyberArk (NASDAQ: CYBR), is the global leader in Identity Security. Centered on privileged access management, CyberArk provides the most comprehensive security offering for any identity – human or machine – across business applications, distributed workforces, hybrid cloud workloads and throughout the DevOps lifecycle. The world’s leading organizations trust CyberArk to help secure their most critical assets. To learn more about CyberArk, visit our CyberArk blogs or follow us on X, LinkedIn or Facebook.

Our Global Security Operations Center (SOC) plays a critical role in detecting, investigating, and responding to security incidents worldwide. We are looking for an experienced and passionate SOC Engineer to join our team and help drive the next generation of SOC operations, including the use of AI-driven detection and automation. 

What You’ll Do 

• Lead and deliver complex projects in Splunk, including ongoing maintenance, optimization, and advanced dashboards. 

• Develop and automate security processes with Python scripting and orchestration frameworks. 

• Design, implement, and fine-tune detection engineering rules for advanced threat visibility. 

• Integrate and leverage AI/ML-based technologies to improve detection accuracy, alert triage, and response. 

• Investigate and respond to security alerts, driving resolution and escalation when required. 

• Actively support and enhance incident response (IR) processes across global teams. 

• Conduct cloud security investigations across AWS, Azure, and other environments. 

• Operate and optimize EDR solutions including advanced query writing. 

#LI-JH1

• 5+ years of experience in a SOC, MDR, or Managed EDR service OR security operations . 

• Proven hands-on expertise with Splunk (or equivalent SIEM tools), including project leadership. 

• Strong background in scripting and automation (Python required). 

• Practical experience in incident response and detection engineering. 

• Solid knowledge of cloud security investigations and monitoring. 

• Hands-on experience with EDR platforms 

• Exposure to AI/ML-based solutions for detection, monitoring, or SOC automation. 

• Strong analytical skills, problem-solving mindset, and ability to succeed in a fast-paced environment. 

• Independent, proactive, and collaborative professional with a passion for excellence. 

CyberArk is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, creed, sex, sexual orientation, gender identity, national origin, disability, or protected Veteran status. 

We are unable to sponsor or take over sponsorship of employment Visa at this time.

The salary range for this position is $82,000 – $120,000/year, plus commissions or discretionary bonus, which will be based on the employee’s performance. Base pay may also vary considerably depending on job-related knowledge, skills, and experience. The compensation package includes a wide range of medical, dental, vision, financial, and other benefits.