Senior Developer - Active Response

Role Summary :

As a Senior Developer - Active Response, you will lead the design, development, and optimization of proactive and reactive systems that detect, analyze, and respond to security events in real-time. You will work closely with cybersecurity analysts, DevOps, and cloud engineering teams to ensure robust automated response capabilities across enterprise systems.

This role requires deep technical expertise, problem-solving skills, and hands-on experience in modern cloud and security architectures.

Key Responsibilities :

- Design, develop, and maintain active response systems that monitor, detect, and automatically respond to cybersecurity events.

- Implement automation frameworks for threat detection, incident response, and remediation across endpoints, networks, and cloud environments.

- Develop scalable, efficient, and secure code for event-driven systems, leveraging Python, Java, or similar languages.

- Integrate active response capabilities with SIEM, SOAR, and threat intelligence platforms.

- Collaborate with cybersecurity teams to define rules, policies, and workflows for automated responses.

- Troubleshoot, debug, and optimize real-time event processing pipelines and scripts.

- Ensure all code follows best practices for security, scalability, and maintainability.

- Document system designs, incident response workflows, and operational procedures.

- Mentor junior developers and conduct code reviews to maintain high-quality engineering standards.

Technical Skills Required :

- Strong programming experience in Python, Java, or Go

- Experience with event-driven architectures, real-time processing, and messaging systems

- Familiarity with cloud platforms (Azure, AWS, GCP) and their security services

- Knowledge of SIEM (Splunk, ELK, or equivalent) and SOAR tools

- Hands-on experience with threat detection, incident response, and remediation automation

- Solid understanding of network protocols, cybersecurity concepts, and endpoint protection

- Experience with APIs, microservices, and automation frameworks

Preferred / Nice-to-Have :

- Experience with containers and orchestration (Docker, Kubernetes)

- Knowledge of serverless/cloud-native event processing

- Exposure to machine learning for threat detection

- Certifications like CISSP, CEH, or equivalent