ClearFocus Technologies, a HUBZone certified company, is located in Leesburg, VA. We specialize in cybersecurity and support multiple government and commercial clients for a variety of missions. We value our clients, integrity and employees and believe a single person can make a difference!  

We are committed to attracting and retaining the best and brightest talent who desire to work with industry leading technology to stay on top of their profession. We provide an excellent benefit package which includes medical, dental, vision, paid time off, 401(k), paid professional development reimbursement and more! 
We are seeking a SOAR Engineer for an opportunity that is 100% onsite in Washington, DC. All applicants must have an active Top-Secret clearance and SCI/Q eligibility. No exceptions.

Job Summary
We are seeking a highly skilled SOAR Engineer to design, develop, and maintain security automation solutions that enhance our Security Operations Center (SOC). The ideal candidate will have experience with SOAR platforms, security tool integrations, scripting, and incident response processes. This role will focus on automating repetitive security tasks, improving response times, and increasing operational efficiency.
Key Responsibilities

• Design, develop, test, and deploy SOAR playbooks and automation workflows.
• Integrate security tools such as SIEM, EDR, threat intelligence, ticketing, and IAM solutions with the SOAR platform.
• Automate incident response processes for phishing, malware, unauthorized access, and other security events.
• Develop and maintain API integrations with third-party security products.
• Collaborate with SOC analysts, threat hunters, and incident responders to identify automation opportunities.
• Monitor and optimize SOAR platform performance, scalability, and reliability.
• Create technical documentation, workflow diagrams, and operational procedures.
• Troubleshoot automation failures and improve existing playbooks.
• Participate in change management and security engineering initiatives.
• Stay current with emerging cybersecurity threats, technologies, and automation best practices.

Required Qualifications

• Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or related field (or equivalent experience).
• 8+ years of experience in cybersecurity, SOC operations, security engineering, or incident response.
• Hands-on experience with SOAR platforms such as Cortex XSOAR, Splunk SOAR, Swimlane, or Tines.
• Strong scripting skills in Python, PowerShell, or similar languages.
• Experience with REST APIs and security tool integrations.
• Knowledge of SIEM technologies and security operations workflows.
• Understanding of network security, cloud security, and threat detection concepts.
• Excellent problem-solving and communication skills.

Preferred Qualifications

• Experience with cloud platforms such as Amazon Web Services, Microsoft Azure, or Google Cloud.
• Security certifications such as CISSP, Security+, or CEH.
• Experience with DevSecOps, CI/CD pipelines, containerization, or AI-driven security automation.
• Knowledge of EDR, XDR, IAM, and threat intelligence platforms.

Common Technical Skills

• SOAR Platforms
• Python / PowerShell
• REST APIs
• SIEM (Splunk, Elastic, QRadar)
• Incident Response
• Threat Intelligence
• Security Automation
• Playbook Development
• Cloud Security
• Linux Administration
• Git / CI-CD
• Security Tool Integrations