SOAR Engineer

Position Title: SOAR Engineer Location: Riyadh, Kingdom of Saudi Arabia Engagement Type: Full-time, OnsitePosition OverviewTSS is seeking a highly qualified SOAR Engineer to provide dedicated onsite technical expertise and operational support for the implementation and optimization of the Security Orchestration, Automation, and Response (SOAR) platform. The selected candidate will ensure the effective integration of the SOAR solution within the cybersecurity ecosystem, working in close coordination with the Cyber Defense Center (CDC) team to enhance automation, response efficiency, and incident management capabilities.Key ResponsibilitiesDesign, configure, and maintain automated workflows and playbooks to improve cybersecurity operations and response efficiency.Develop and customize integrations and scripts (preferably using Python) to interface with internal and third-party systems.Optimize and fine-tune automation processes to ensure accuracy, scalability, and operational effectiveness.Provide ongoing operational support, including troubleshooting, performance optimization, and enhancement of automation rules.Collaborate with cybersecurity teams to develop and refine use cases aligned with operational requirements.Conduct technical workshops and enablement sessions for cybersecurity personnel.Prepare and maintain detailed technical documentation, including architecture diagrams, configuration details, and playbook logic.Qualifications and ExperienceMinimum of five (5) years of hands-on experience in SOAR platform implementation, integration, and operation.Proven expertise with Palo Alto Cortex XSOAR or equivalent SOAR technologies.Strong understanding of security operations, incident response processes, and automation scripting.Proficiency in scripting languages, particularly Python.Excellent analytical, problem-solving, and documentation skills.Fluent in English (both written and verbal).Bachelor’s degree in Computer Science, Cybersecurity, Information Technology, or a related discipline.Relevant professional certifications (e.g., Palo Alto Cortex XSOAR, SANS, or other SOAR/SIEM-related certifications) are preferred.Additional RequirementsThe resource will operate onsite in Riyadh in direct collaboration with the Cyber Defense Center (CDC) team.The candidate must comply with all applicable security clearance, confidentiality, and compliance policies.The position requires full-time engagement and participation in coordination meetings, technical reviews, and stakeholder sessions as part of the project governance framework.