Accenture Federal Services logo

Accenture Federal Services

washington, dcWashington, DC

Sr. SOAR Playbook Engineer

full-timeOn-site$108,400 - $203,400
security
soar
incident response
splunk
zscaler
okta
crowdstrike
ai
cybersecurity
engineer
At Accenture Federal Services, nothing matters more than helping the US federal government make the nation stronger and safer and life better for people. Our 13,000+ people are united in a shared purpose to pursue the limitless potential of technology and ingenuity for clients across defense, national security, public safety, civilian, and military health organizations.
 
Join Accenture Federal Services, a technology company and part of global Accenture, to do work that matters in a collaborative and caring community, where you feel like you belong and are empowered to grow, learn and thrive through hands-on experience, certifications, industry training and more.
 
Join us to drive positive, lasting change that moves missions and the government forward!

We are:


Accenture Federal Services, bringing together commercial innovation with the latest technology to unleash the potential for our federal clients. Every day we bring bold thinking and diverse disciplines to solve problems in new ways. Ready to learn as much as you can We’ll give you numerous opportunities from informal training sessions to courses and certifications to keep your tech smarts sharp.

You are:

We are seeking an experienced cybersecurity professional to design, develop, and implement Security Orchestration, Automation, and Response (SOAR) playbooks across our enterprise security platforms, with a focus on Splunk, Zscaler, Okta, and CrowdStrike Falcon. The ideal candidate will leverage AI capabilities to enhance automation workflows while optimizing our incident response processes.

The work:

  • Design and implement enterprise-level SOAR playbooks across multiple security platforms Integrate AI-driven solutions to build, operate, and maintain security automation
  • Reduce incident response times through intelligent workflow automation
  • Conduct proactive threat hunting using advanced analytics
  • Perform deep-dive investigations into sophisticated attacks
  • Research emerging threats and attack methodologies
  • Develop custom detection mechanisms and analytics
  • Lead vulnerability assessments and penetration testing initiatives
  • Enhance threat intelligence utilization throughout the organization
  • Mentor junior incident responders on IR processes and best practices
  • Create and optimize tools to reduce time-to-report for security incidents
  • Document workflows and process improvements.
  • Collaborate with internal teams to identify improvements

Here's what you need:

  • 5+ years of experience in Incident Response and Security Engineering roles
  • Demonstrated experience building SOAR playbooks in enterprise environments
  • Expertise with at least one ore more of these tools: Splunk, Okta, Zscaler, and CrowdStrike Falcon security platforms 
  • Experience building security solutions in at least one major cloud platform
  • Experience with AI/ML integration into security operations 
  • Background in threat hunting and advanced threat detection

Preferred Qualifications:

  • Security certifications (CISSP, GCIH, GCIA, etc.)
  • Programming/scripting experience (Python, PowerShell, etc.)
  • Experience with additional SIEM/SOAR platforms
  • Knowledge of threat intelligence platforms and integration methods
  • Experience in a SOC environment with enterprise-level incident handling
  • Proficiency in multi-cloud environments (AWS, GCP, Azure, OCI)

Eligibility Requirements:

US Citizen