**Description** The **Senior Security Automation Engineer** plays a pivotal role in enhancing the efficiency and maturity of the organization’s security operations by designing and implementing robust **automated solutions** . Working in close collaboration with **Global Information and Cyber Security Defense (ICSD)** function, this role identifies opportunities to streamline processes, accelerate incident response, and reduce operational overhead through intelligent automation. In addition to building scalable automation workflows this individual will contribute to the broader **Security Engineering team** , supporting the development and maintenance of the organization’s security infrastructure. The ideal candidate combines a deep understanding of cybersecurity operations with a strong background in scripting and automation platforms to build scalable, resilient, and secure systems. **Role and Responsibilities:** + Design and deploy AI-driven security agents leveraging state-of-the-art Large Language Models (LLMs) to automate traditionally manual security operations and workflows. + Leverage LLM-powered platforms such as Microsoft Security Copilot to support cybersecurity tasks including threat hunting, generating policy recommendations, and creating security incident response playbooks. + Build and maintain SOAR playbooks integrated with various security platforms (e.g., SIEMs, EDRs, identity platforms) to streamline incident response and automation. + Lead automation initiatives to eliminate manual processes, improve the reliability and visibility of security controls, and define metrics to measure the impact of process improvements. + Ensure automation workflows and monitoring solutions are resilient, integrated, and optimized for 24/7 detection and response capabilities. + Support the administration and management of security tools within the Security Engineering team. + Participate in proof-of-concepts for innovative security and automation solutions. + Lead security operations process improvements, including development and refinement of SOPs, playbooks, and standards. + Support security audits, assist in incident investigations, and promote adherence to security best practices across DevOps environments. + Create technical documentation and deliver enablement sessions to enhance security awareness and practices within engineering teams. + Foster a culture of security excellence by promoting secure coding and design practices across the organization. **Qualifications** **Required Qualifications:** + Bachelor’s degree in computer science, Information Security, or a related field, or equivalent work experience. + 5+ years of experience in cybersecurity, with a focus on security engineering and automation. + Comfortable writing scripts using languages such as Python, PowerShell, or Bash, and experience with automation platforms such as Azure Logic Apps, SOAR tools (e.g., Microsoft Sentinel, Splunk SOAR, Cortex XSOAR). + Experience designing SOAR workflows for automated security response and incident triage. + Proven experience with Large Language Models (LLMs) such as GPT-4, OpenAI, Azure OpenAI, or similar frameworks. + Deep understanding of cybersecurity domains, including incident response, threat detection, and Identity and Access Management (IAM) principles. + Experience with RESTful APIs, JSON, and integrating various security platforms. + Familiarity with cloud platforms and cloud-native security services. + Knowledge of Microsoft Security components such as Microsoft Sentinel, Microsoft Defender XDR, Microsoft Defender for Cloud, Microsoft Intune, etc. + Solid understanding of ITSM and change control processes. + Understanding log management, SIEM tools, endpoint detection and other security platforms. **Other Knowledge, Skills and Abilities** + Strong communication and collaboration skills, with proven experience working in cross-functional global teams. + Strong problem-solving and critical thinking skills for addressing security issues and finding effective solutions. + Outstanding written and verbal communication skills. + Ability to work both independently and collaboratively in a fast-paced environment. + Strong communication skills, with the ability to explain security concepts to non-technical stakeholders. **Certifications (Preferred):** + Microsoft Certified: Azure Security Engineer Associate ( **AZ-500** ) + Microsoft Certified: Security, Compliance, and Identity Fundamentals ( **SC-900** ) + Microsoft Certified: Security Operations Analyst Associate ( **SC-200** ) + Certified Information Systems Security Professional ( **CISSP** ) + Certified Automation Professional ( **CAP** ) + Certified Cloud Security Professional ( **CCSP** ) + CompTIA **Security+** / **CySA+** / **CASP+** + Any other relevant security automation or cloud security certifications **Compensation and Benefits** Base salary range and benefits information for this position are being included in accordance with requirements of various state/local pay transparency legislation. Please note that base salaries may vary for different individuals in the same role based on several factors, including but not limited to location of the role, individual competencies, education/professional certifications, qualifications/experience, performance in the role and potential for revenue generation. **Compensation** The base salary compensation range being offered for this role is $100,000-$120,000 USD per year. This role is also eligible for an annual short-term incentive bonus **Company Benefits** WTW provides a competitive benefit package which includes the following (eligibility requirements apply): + **Health and Welfare Benefits:** Medical (including prescription coverage), Dental, Vision, Health Savings Account, Commuter Account, Health Care and Dependent Care Flexible Spending Accounts, Group Accident, Group Critical Illness, Life Insurance, AD&D, Group Legal, Identify Theft Protection, Wellbeing Program and Work/Life Resources (including Employee Assistance Program) + **Leave Benefits:** Paid Holidays, Annual Paid Time Off (includes paid state/local paid leave where required), Short-Term Disability, Long-Term Disability, Other Leaves (e.g., Bereavement, FMLA, ADA, Jury Duty, Military Leave, and Parental and Adoption Leave), Paid Time Off (https://cdn-static.findly.com/wp-content/uploads/sites/1862/2023/01/31091722/Washington-State-Time-Off.pdf) + **Retirement Benefits:** Contributory Pension Plan and Savings Plan (401k). All Level 38 and more senior roles may also be eligible for non-qualified Deferred Compensation and Deferred Savings Plans. Pursuant to the San Francisco Fair Chance Ordinance and Los Angeles County Fair Chance Ordinance for Employers, we will consider for employment qualified applicants with arrest and conviction records. Note that visa employment-based non-immigrant visa sponsorship and/or assistance is not offered for this specific job opportunity. This position will remain posted for a minimum of three business days from the date posted or until sufficient/appropriate candidate slate has been identified. **EOE, including disability/vets**