At Schwab, you’re empowered to make an impact on your career. Here, innovative thought meets creative problem solving, helping us “challenge the status quo” and transform the finance industry together.
We believe in the importance of in-office collaboration and fully intend for the selected candidate for this role to work on site in the specified location(s).
The Application and Data Engineering organization within SCS is responsible for defining the strategy, design, development, implementation, and ongoing support of security automation and orchestration capabilities.
Our mission is to strengthen Schwab’s security posture by delivering high‑performance, automated solutions that increase operational efficiency and eliminate repetitive manual tasks across cyber operations and business processes.
We are seeking a Security Software Development Engineer (SIEM/SOAR) to join our team.
This role will focus on building scalable, intelligent automation and detection capabilities that empower security teams and elevate Schwab’s defensive posture.
Key Responsibilities
Design and build orchestration and automation solutions using the Google SecOps platform.Develop end‑to‑end secure log ingestion pipelines, ensuring accurate parsing, normalization, and enrichment of security data for SIEM analysis.Partner with Security Operations Center (SOC) analysts to create, evaluate, and refine high‑fidelity detection rules, analytics, and correlation logic.Build, implement, and maintain SOAR automation playbooks and workflows to streamline security operations and accelerate incident response and triage.Integrate AI and machine learning capabilities into security workflows by leveraging Google’s AI services.Produce comprehensive technical documentation and generate reports demonstrating the effectiveness of automated controls.Positively influence peers and independently foster strong cross‑team relationships.Solve diverse technical problems requiring evaluation of multiple factors and data sources.What you have
Required Qualifications
3+ years of direct cybersecurity engineering experience, including hands‑on SIEM or SOAR development.Proficiency in cloud service implementation.Strong programming skills in Python, Java, C#, or other scripting languages, with experience in security automation and API integrations.Ability to analyze security event data, troubleshoot complex log‑source issues, and fine‑tune detection logic.Ability to thrive in a dynamic, fast‑paced environment.Exposure to and strong interest in cloud‑based AI/ML frameworks.Excellent communication, collaboration, and critical‑thinking skills.Bachelor’s degree in computer science or a related field.
Preferred Qualifications
Certifications such as Google Professional Cloud Security Engineer or relevant cybersecurity certifications.Ability to apply AI and ML techniques to strengthen security operations.
In addition to the salary range, this role is also eligible for bonus or incentive opportunities.
Options Apply for this jobApplyShareRefer a friendRefer Sorry the Share function is not working properly at this moment. Please refresh the page and try again later. Share on your newsfeedWhy work for us?
At Schwab, we’re committed to empowering our employees’ personal and professional success. Our purpose-driven, supportive culture, and focus on your development means you’ll get the tools you need to make a positive difference in the finance industry.
We offer a competitive benefits package to our full-time employees that takes care of the whole you – both today and in the future:
401(k) with company match and Employee stock purchase plan Paid time for vacation, volunteering, and 28-day sabbatical after every 5 years of service for eligible positions Paid parental leave and family building benefits Tuition reimbursement Health, dental, and vision insurance Application FAQsSoftware Powered by iCIMS
www.icims.com