SOAR Developer

The SOAR Developer will be accountable for implementing key elements within the Security Orchestration Automation and Response (SOAR) platform to augment the incident response capabilities of the Canadian Shared Cybersecurity Centre (CanSSOC) team. With assistance and oversight from the CanSSOC Engineering team, the SOAR Developer will also work to establish a modular and scalable implementation of the SOAR platform.

This is a full-time, permanent position that reports to CANARIE’s Director, Cybersecurity Engineering.

About CanSSOC

CanSSOC is the federated, shared security operations centre for Canada’s research and education sector. CanSSOC services lay the groundwork for common cybersecurity tools, knowledge, and awareness across institutions, regardless of their maturity or capability in detection and response. Developed in collaboration with National Research & Education Network (NREN) partners and other trusted community partners, CanSSOC services deliver curated alerts, advisories, and actionable intelligence.

Key Responsibilities

  • Lead the development and implementation of integration and automation within a SOAR platform.
  • Participate in user story definition, task planning, and estimation.
  • Participate in code reviews of software to maintain code quality.
  • Develop training material and process documentation on relevant security platforms.
  • Provide recommendations for future projects, security tools, and applications, along with associated benefits of the solution.
  • Travel may occasionally be required.
  • Other related duties and responsibilities, as required.

The Ideal Candidate

To excel at CANARIE, you have a demonstrated capacity to work collaboratively on teams and are also an energetic self-starter with the self-motivation to work independently. You have excellent oral and written communication skills, and can count time management, problem solving, and managing multiple priorities as your strengths. You also share a dedication to CANARIE’s core values: service, teamwork, inclusion, innovation, quality, and integrity.

Bilingualism is required.

What You Bring

Education and Experience

  • College diploma or university degree or a suitable combination of education, experience, or other relevant training
  • Minimum of 5 years of relevant progressive experience
  • Minimum of 2 years of relevant cybersecurity experience
  • Experience documenting cybersecurity processes, procedures, and playbooks
  • International Information System Security Certification Consortium (ISC2), Computing Technology Industry Association (CompTIA), Global Information Assurance Certification (GIAC), or other relevant cybersecurity certifications are desirable


  • Ability to apply software design patterns and systems thinking to a new problem
  • Technical problem-solving skills; able to analyze and find alternative solutions
  • Ability to clearly communicate technical information
  • Ability to learn new platforms, programming languages, and technologies
  • Demonstrated ability to build trust and credibility with both internal and external stakeholders

Technical Proficiencies

  • Working knowledge of the following:
    • Language: Python, PowerShell, JavaScript/TypeScript, bash, others as needed
    • Environments: Cortex XSOAR (or other SOAR platform), Docker, Kubernetes, Linux, Windows, AWS (or other cloud)
    • Technologies: RESTful APIs, Open API, JSON, XML, Docker Compose, Helm
    • Tools: Git, GitLab
    • Microsoft Office suite

Come Work with Us

We are committed to employment equity and encourage anyone who can contribute to the diversification of ideas and perspectives to apply. For applicants with disabilities, accommodation is available upon request throughout the recruitment and assessment process.

If this seems to be the right fit for you, please send a note and your resume to [email protected], and include the position title in your subject line.

We thank all applicants; however, only those selected for an interview will be contacted.