Senior SOC Engineer – Cloud Security & AI Automation

Senior SOC Engineer – Cloud Security & AI Automation
📍 Toronto, ON (Hybrid – 2 days/week onsite)
⏰ Work Hours: EST | 🌍 Collaboration with Global Security Teams (Germany)
We’re hiring a Senior SOC Engineer to lead the way.
In this hands-on role, you’ll be engineering the backbone of our detection and response strategy — not just tuning alerts, but owning the tools, optimizing them, and driving intelligent automation across our security operations.
We’re looking for a technical leader who thrives in dynamic environments, isn’t afraid to challenge the norm, and has a passion for solving complex security problems with smart automation and AI.
🔍 What You’ll Do:
Own and enhance our Security Incident Management tooling and processes
Act as Incident Commander during high-severity events
Drive detection engineering initiatives and improve SIEM capabilities
Build and integrate AI & GenAI tools to streamline response and decision-making
Work closely with international teams on a global SOC vision
Mentor team members and champion best practices across the business
💡 We’re Looking For:
✅ 10+ years in cybersecurity, with a strong SOC engineering and IR background
✅ Expert in Microsoft Defender and CrowdStrike (non-negotiable)
✅ Strong scripting skills (Python preferred)
✅ Cloud-native security experience (especially AWS, Docker, K8s, ELK, etc.)
✅ Knows why alerts fire, where data lives, and how to build better detections
✅ Sharp communicator, no fluff, pragmatic and action-driven
🎯 Bonus Points:
Experience at tech-forward orgs (e.g., Amazon, Shopify, Microsoft, CrowdStrike, Arctic Wolf)
Familiar with frameworks like MITRE ATT&CK, Cyber Kill Chain
Background in startups or fast-paced environments where security innovation is key

If you’re ready to own the SOC, engineer smarter defenses, and be part of a forward-thinking team pushing the boundaries of AI in security — we want to hear from you.
Apply now by sending your resume to tinak@corgta.com.