Lead Security Automation Engineer

Automation Engineer experienced in SOAR or Hyperautomation within an MSSP, JSON, API integrations, and case management automation, and the role is based in Sri Lanka with 24/7 SOC and IR operations. Responsibilities Develop and optimise automation workflows, Hyperautomation or other SOAR platforms (XSOAR, Splunk SOAR, LogicHub, and Swimlane). API integrations between security tools & cloud platforms (SIEMs, EDRs, XDRs, case management systems). Work with JSON, parsing, and data transformations to enable data exchange across multiple security platforms. Design and maintain fault-tolerant automation processes that scale across thousands of clients. Maintain and optimise CI/CD pipeline infrastructure within a SOAR platform. Skills 1+ years in security automation or SOAR engineering in MSSP, DFIR, or enterprise environments. Proficient in Python, PowerShell, JavaScript, or Bash for automation & Ansible and DORA practices. work with SIEM (Splunk, Sentinel) EDR/XDR tools (CrowdStrike, SentinelOne).