Remote / Hybrid · Level: Mid-Senior · Reports to: SOC Lead / Head of Security About the Role We ... Collaborate with IT and engineering teams to improve telemetry and response capabilities * Maintain ...
Quick apply
Remote / Hybrid · Level: Mid-Senior · Reports to: SOC Lead / Head of Security About the Role We ... Collaborate with IT and engineering teams to improve telemetry and response capabilities * Maintain ...
Remote Soar Engineer information
See Boca Raton, FL salary details
$36.1K - $49.3K
5% of jobs
$49.3K - $62.5K
7% of jobs
$62.5K - $75.8K
9% of jobs
$78.6K is the 25th percentile. Wages below this are outliers.
$75.8K - $89K
14% of jobs
The median wage is $100.9K / yr.
$89K - $102.3K
16% of jobs
$102.3K - $115.5K
13% of jobs
$115.5K - $128.8K
6% of jobs
$135.8K is the 75th percentile. Wages above this are outliers.
$128.8K - $142K
8% of jobs
$142K - $155.2K
8% of jobs
$155.2K - $168.5K
7% of jobs
$168.5K - $181.7K
5% of jobs
$36.1K
$110K
$181.7K
How much do remote soar engineer jobs pay per year?
As of May 29, 2026, the average yearly pay for remote soar engineer in Boca Raton, FL is $109,951.00, according to ZipRecruiter salary data. Most workers in this role earn between $78,800.00 and $143,800.00 per year, depending on experience, location, and employer.
What is a Remote SOAR Engineer job?
A Remote SOAR (Security Orchestration, Automation, and Response) Engineer is responsible for designing, implementing, and maintaining SOAR solutions to enhance an organization's cybersecurity operations. They work remotely to automate security workflows, integrate various security tools, and improve incident response efficiency. This role requires expertise in scripting, API integrations, and security operations to optimize threat detection and response.
What are the key skills and qualifications needed to thrive in the Remote Soar Engineer position, and why are they important?
To thrive as a Remote SOAR Engineer, you need expertise in cybersecurity operations, automation scripting (such as Python), and familiarity with Security Orchestration, Automation, and Response (SOAR) platforms, often supported by a degree in computer science or a related field. Proficiency with tools like Splunk, Palo Alto Cortex XSOAR, and relevant certifications (e.g., CISSP, GIAC) are highly valued. Strong problem-solving skills, effective communication, and the ability to work independently in a distributed environment are key soft skills. These qualifications ensure effective incident response automation and seamless integration with security operations while collaborating remotely with global teams.
What does a typical workday look like for a Remote SOAR Engineer, and how do they collaborate with security teams?
A typical workday for a Remote SOAR Engineer involves designing, building, and maintaining automated security workflows, analyzing security alerts, and quickly responding to incidents using SOAR tools. You’ll work closely with Security Operations Center (SOC) analysts, incident responders, and IT teams, often coordinating via virtual meetings, chat platforms, and collaborative documentation tools. Tasks may also include troubleshooting automation scripts, updating playbooks based on emerging threats, and participating in team reviews to improve security processes. Despite being remote, effective communication and regular check-ins are key to ensuring alignment and smooth collaboration across global security teams.
More about Remote Soar Engineer jobs
What are popular job titles related to Remote Soar Engineer jobs in Boca Raton, FL? For Remote Soar Engineer jobs in Boca Raton, FL, the most frequently searched job titles are:
What job categories do people searching Remote Soar Engineer jobs in Boca Raton, FL look for? The top searched job categories for Remote Soar Engineer jobs in Boca Raton, FL are:
What cities near Boca Raton, FL are hiring for Remote Soar Engineer jobs? Cities near Boca Raton, FL with the most Remote Soar Engineer job openings:
Other
Posted 7 days ago
Job description
Security Operations (SOC) Analyst — Threat Hunting & AI SecOps
Location: Remote / Hybrid · Level: Mid–Senior · Reports to: SOC Lead / Head of Security
About the Role
We are seeking a SOC Analyst who goes beyond monitoring alerts. This role focuses on proactive threat hunting, end-to-end incident investigations, and building an AI-assisted SecOps capability to automate triage, enrichment, and response.
This is a hybrid role:
- 60% Security Operations (threat hunting, investigations, detection engineering)
- 40% Engineering & Automation (detection-as-code, scripting, AI-assisted tooling)
Key Responsibilities
- Conduct proactive, hypothesis-driven threat hunting across endpoint, network, identity, and cloud environments
- Lead incident investigations from alert to containment and root-cause analysis
- Develop and tune detections (Sigma, KQL, SPL, YARA) aligned with MITRE ATT&CK
- Build automation and detection workflows, including SOAR playbooks
- Contribute to AI-driven SecOps initiatives (LLM-assisted triage, enrichment, anomaly detection)
- Develop scripts (primarily Python) to automate analysis and enrichment
- Collaborate with IT and engineering teams to improve telemetry and response capabilities
- Maintain and enhance playbooks, runbooks, and SOC processes
Required Qualifications
- 3+ years of experience in SOC, Incident Response, or Threat Hunting
- Strong understanding of attacker methodologies and the MITRE ATT&CK framework
- Hands-on experience with SIEM/XDR/EDR platforms (e.g., Splunk, Microsoft Sentinel, Elastic, CrowdStrike, Defender)
- Experience writing queries and building detections
- Proficiency in Python or similar scripting language
- Solid knowledge of operating systems, networking, identity, and at least one cloud platform (AWS, Azure, or GCP)
- Strong written communication skills for incident reporting
Preferred Qualifications
- Experience with SOAR or security automation pipelines
- Exposure to AI/ML applications in cybersecurity (alert triage, anomaly detection, enrichment)
- Detection-as-code with CI/CD pipelines
- Threat intelligence experience (e.g., Pyramid of Pain)
- Certifications such as GCIA, GCFA, GCTI, OSCP, or similar
What This Role Is Not
This is not a Tier 1 monitoring role or a pure research position. It requires both strong analytical capability and hands-on building/automation skills.
Company Description
Vijilan Security provides 24/7 cybersecurity monitoring, detection, response, and managed security operations for MSPs, MSSPs, and enterprise partners. We work closely with leading technology providers, including CrowdStrike, Cribl, and other modern security platforms, to help organizations improve visibility, detection, and response across their environments.
We are looking for someone who understands log management, SIEM technologies, and data pipelines. Training will be provided, especially around CrowdStrike Falcon Next Gen SIEM implementation, LogScale, Cribl, Onum, and Vijilan’s internal processes.
We are looking for someone who understands log management, SIEM technologies, and data pipelines. Training will be provided, especially around CrowdStrike Falcon Next Gen SIEM implementation, LogScale, Cribl, Onum, and Vijilan’s internal processes.
About Vijilan Security
Sourced by ZipRecruiter
Industry
Network security
Company size
11 - 50 Employees
Headquarters location
Aventura, FL, US
Year founded
2014