CDW Corporation is a leading multi-brand provider of information technology solutions to business, government, education and healthcare customers in the United States, the United Kingdom and Canada. A Fortune 500 company and member of the S&P 500 Index, CDW helps its customers to navigate an increasingly complex IT market and maximize return on their technology investments. For more information about CDW, please visit www.CDW.com. Our broad array of products and services range from hardware and software to integrated IT solutions such as security, cloud, hybrid infrastructure and digital experience.

Senior Security Engineer II – Security Automation, AI & Orchestration

Security EngineerSecurity EngineerFull TimeRemoteTeam 10,001+Since 1984H1B SponsorCompany Site LinkedIn

Location

United States

Posted

18 days ago

Salary

$132K - $190.6K / year

Bachelor Degree7 yrs expEnglishAzureCloudCyber SecurityPythonSplunk

Job Description

• Design intelligent cyber defense. • Automate response. • Engineer automation-first, AI-assisted security capabilities that transform detection signals into real-time, policy-driven response and control actions. • Help evolve security operations from “alert and investigate” to detect, decide, and act. • Design and implement SOAR workflows, detection logic, and automated response playbooks. • Integrate AI/ML-driven insights to improve signal fidelity, decisioning, and response outcomes across detection, response, and control planes. • Document automation patterns, standards, and engineering decisions.

Job Requirements

Bachelor’s degree and 7+ years of experience in cybersecurity engineering, detection engineering, or automation-focused security roles, OR 11+ years of experience in cybersecurity engineering, detection engineering, or automation-focused security roles.
Strong experience with security automation, orchestration, or SOAR platforms.
Proficiency in Python and/or PowerShell for production-grade automation.
Designing secure, observable, and maintainable AI-enabled solutions
Hands-on experience with SIEM/XDR platforms and cloud-scale security tooling.
Practical working knowledge of the MITRE ATT&CK framework and mapping detections to controls.
Built automation for large, diverse enterprise environments, a plus.
Familiarity with platforms such as Microsoft Defender, Microsoft Sentinel, CrowdStrike, Palo Alto XSOAR/XSIAM, Azure AD/Entra ID, Splunk, a plus.
Experience with CI/CD pipelines, infrastructure-as-code, and policy-as-code, a plus.
Background in detection engineering, threat hunting, or incident response, a plus.
Relevant certifications (GCIH, GCFA, Azure Security, cloud or automation certifications), a plus.