Cyber Engineering and Automation Manager (Remote, Full-Time) [HRPP]

Cyber Engineering and Automation Manager (Remote, Full-Time) [HRPP]

About Smart Working
At Smart Working, we believe your job should not only look right on paper but also feel right every day. This isnt just another remote opportunity - its about finding where you truly belong, no matter where you are. From day one, youre welcomed into a genuine community that values your growth and well-being.
Our mission is simple: to break down geographic barriers and connect skilled professionals with outstanding global teams and products for full-time, long-term roles. We help you discover meaningful work with teams that invest in your success, where youre empowered to grow personally and professionally.Join one of the highest-rated workplaces on Glassdoor and experience what it means to thrive in a truly remote-first world.
About the role
As a Cyber Engineering and Automation Manager, this is a high-impact, greenfield leadership role for a senior cybersecurity professional with strong hands-on engineering capability. The role sits at the heart of Security Operations, with responsibility for defining and implementing how central SOC services collaborate with supporting functions across the organisation.
You will shape the end-to-end operating model for security operations, with a strong focus on automation, tooling, and scalable delivery across cyber threat intelligence and incident response. A key early priority will be onboarding and stabilising a new Managed Security Services Provider (MSSP), followed by building the foundations for stronger internal security capabilities over time.

Responsibilities

• Define and implement the operating model for collaboration between the central SOC and supporting security functions
• Design and deliver automation solutions to streamline SOC activities such as alert triage, incident response, and reporting
• Lead the onboarding and transition of a new MSSP, including: Defining operational procedures and service delivery models, Establishing KPIs and SLAs, Acting as a key point of escalation and partnership

• Own the optimisation and ongoing operation of SOC platforms, including SIEM tooling
• Oversee BAU maintenance and operational health of security platforms (e.g. Splunk, cloud security tooling)
• Integrate security tools such as SIEM, SOAR, firewalls, and related platforms to improve data flow and response coordination
• Create and maintain automated incident response playbooks for common threat scenarios
• Develop and maintain SOC knowledge bases and documentation repositories
• Enhance SOC workflows to reduce manual effort and improve response efficiency
• Monitor performance of automation tooling and resolve operational issues
• Collaborate closely with SOC analysts, engineers, and wider security teams to identify automation opportunities
• Build trusted relationships with stakeholders across operating companies to align SOC services with business risk and priorities
• Contribute to longer-term strategy and business cases for strengthening in-house SOC capabilities

Requirements

• Strong experience designing and delivering SOC automation solutions
• Hands-on expertise with automation and orchestration tooling (e.g. SOAR platforms, Ansible, Phantom)
• Proficiency in scripting languages such as Python, PowerShell, or Bash
• Deep understanding of SOC processes, including incident response, threat detection, and triage
• Practical experience working with SIEM platforms, particularly Splunk
• Experience integrating and automating security tools across complex environments
• Proven ability to develop automated workflows and response playbooks
• Strong knowledge of security frameworks such as MITRE ATT&CK and NIST
• Experience with log management and event correlation automation
• Excellent analytical and problem-solving skills
• Strong communication and collaboration skills, able to work across technical and non-technical teams

Nice to have

• Experience operating in large, distributed, or regulated enterprise environments
• Exposure to cloud security operations across multiple cloud accounts
• Experience contributing to SOC transformation or greenfield security programmes
• Background working with MSSPs and transitioning services in-house over time

Benefits

• Fixed Shifts: 12:00 PM - 9:30 PM IST (Summer) | 1:00 PM - 10:30 PM IST (Winter)
• No Weekend Work: Real work-life balance, not just words
• Day 1 Benefits: Laptop and full medical insurance provided
• Support That Matters:Mentorship, community, and forums where ideas are shared
• True Belonging: A long-term career where your contributions are valued

At Smart Working, youll never be just another remote hire.
Be a Smart Worker - valued, empowered, and part of a culture that celebrates integrity, excellence, and ambition.
If that sounds like your kind of place, wed love to hear your story.

PIdfd909b893eb-37641-39652622