Genesis10 is currently seeking a Splunk SOAR Developer with our client in the financial industry located in Chicago, IL and Denver, CO. This is a 12+ month contract position.
Responsibilities:
Design & implement playbooks for phishing, malware triage, threat client enrichment, VIP account protections, user lockouts, EDR containment, firewall updates, cloud response, and ticket lifecycle automation Develop custom Splunk SOAR apps (integrations) using Python to interact with REST APIs, webhooks, OAuth2 flows, and vendor SDKs (e.g., EDR, email security, IAM, cloud, firewalls) Harden and scale automations: add idempotency, robust error handling, retries/backoff, caching, and distributed execution; reduce runtime and failures Own integration health: monitor connectors, troubleshoot failures, resolve API changes/rate limits, and maintain credentials/key vault hygiene Partner with SOC/IR: capture requirements, transla...