SOAR Developer

We are looking for a great SOAR Developer to join us!Job DescriptionWe are currently seeking a skilled 3-5 years of experience SOAR Developer / Integrator to join our SecDevOps initiative, building the next generation of MDR Modern SecOps platforms.You’ll be working primarily with FortiSOAR, designing and implementing orchestration playbooks, integrations, and reusable response logic across multiple SOC environments. The role will involve integrating with COTS security tools (Microsoft Sentinel, Sumo Logic, Defender TI, ReversingLabs, Anomali, etc.), normalizing threat feeds, and automating triage flows aligned with MITRE ATT&CK.Committed toEnd-to-End Development: Contribute to all phases of development — from requirements gathering and architecture design to coding, testing, and deployment.Playbook Logic Implementation: Build reusable and scalable playbooks in FortiSOAR to automate threat detection, enrichment, and response workflows.Integration with Third-Party APIs: Connect with external providers such as Microsoft Sentinel, ReversingLabs, and Palo Alto for alert consumption, enrichment, and automated remediation.Code Quality: Write clean, maintainable, and secure code. Participate actively in code reviews and follow best practices.Team Collaboration: Work closely with your teammates, sharing knowledge and supporting cross-project initiatives.Continuous Learning: Engage in Loop’s internal Security and Tech Councils to strengthen skills and bring best practices into projects.RequirementsMust haveSecurity Automation: Experience with SOAR platforms (FortiSOAR or similar), incident response workflows, and playbook development.Programming: 2–3+ years of Python (for automation, connectors, and integrations). Solid understanding ofREST APIs, YAML, JSON and Jinja2APIs & Integrations: Hands-on experience consuming and integrating REST APIs from security vendors (Sentinel, Palo Alto, threat intel providers, etc.).General DevOps knowledge: Git, CI/CD pipelines.Soft SkillsOwnership: Proactively drive tasks from requirements to delivery. You’ll have support but you should own your scope with autonomyCollaboration: Be a team player — mentor, learn, and contribute within Loop and the client’s team.Communication: Strong verbal and written English for effective interaction. At least B2.Adaptability: Comfortable working in hybrid contexts (security + software engineering), quickly ramping up on new tools and workflows.