We are seeking an experienced Senior Swimlane Automation Engineer / Architect to lead the end-to-end design, implementation, and deployment of security automation playbooks on the Swimlane platform. In this role, you will serve as a subject matter expert, translating complex security workflows into scalable, reliable automations that drive operational efficiency across our security organization. You will collaborate closely with SOC analysts, threat intelligence teams, and platform engineers to build and maintain a best-in-class SOAR environment.
Type of role: Contractor
Duration: Related to Swimlane project – no specific duration as of now
Hours: 40 hours per week – working in tandem with Irish working hours ideally (9am-5:30pm)
Location: Remote/hybrid and reporting to HQ in Cork, Ireland
Key Responsibilities
Architect, design, and implement end-to-end Swimlane playbooks covering the full automation lifecycle — from requirements gathering through deployment and post-deployment tuning.
Lead the development of automation workflows for threat detection, incident response, alert triage, and case management use cases.
Integrate Swimlane with SIEM platforms (e.g., Splunk, Microsoft Sentinel, IBM QRadar, SecOps or similar) and other security tooling to enable seamless data flow and orchestration.
Write, review, and maintain Python-based scripts, custom actions, and Turbine components to extend platform capabilities and support complex automation logic.
Define and enforce coding standards, design patterns, and best practices for Swimlane development across the team.
Conduct thorough testing, debugging, and performance optimization of playbooks and integrations in development, staging, and production environments.
Produce and maintain comprehensive technical documentation including architecture diagrams, runbooks, and operational guides.
Provide technical mentorship and guidance to junior automation engineers and SOC personnel.
Partner with stakeholders to identify automation opportunities, assess feasibility, and prioritize the automation roadmap.
Stay current with emerging SOAR capabilities, threat trends, and industry best practices to continuously improve the automation program.
Required Qualifications
Hands-on expertise with Swimlane, including full-lifecycle playbook development and platform administration.
Proficiency with Python for scripting, custom action development, and API integrations.
Demonstrated experience with Swimlane Turbine, including building and deploying Turbine components and understanding its execution model.
Practical experience integrating with at least one major SIEM platform (Splunk, Microsoft Sentinel, IBM QRadar, SecOps, or equivalent).
Strong understanding of REST APIs and experience developing integrations with third-party security and IT tools.
Solid grasp of incident response processes, SOC workflows, and common security use cases (phishing, malware, identity threats, etc.).
Excellent analytical, problem-solving, and communication skills, with the ability to translate technical concepts for non-technical stakeholders.
Diversity & Inclusion Mission Statement
At Smarttech247, our mission is to keep our customers secure. Cybersecurity is a complex industry, therefore, in order to tackle its challenges and continue to innovate, we believe that a diverse workforce contributes to greater collective intelligence and ultimately, makes a stronger team – qualities that are needed in our fight against cybercrime.
#J-18808-Ljbffr