AppSec Jobs
← Back to all jobs

Checkmarx

Security Engineer, SOAR and Automation

Ramat Gan, Tel Aviv District, IsraelPosted 2 weeks agoWebsite
Apply on LinkedIn →

At a Glance

PythonJavaScript/TypeScriptIncident Response

About This Role

Checkmarx is the enterprise application security leader and the host of Checkmarx One, the industry-leading cloud-native AppSec platform that helps enterprises build #DevSecTrust. We are looking for a Security Engineer to join our Security Operations team and grow into our SOAR and automation specialist. The team is responsible for monitoring our environments, identifying and responding to security alerts, and continuously improving how we detect and respond to threats. This role focuses on the automation side of the function: building the workflows that make the rest of the team faster, from automated alert triage to enrichment pipelines to response playbooks. You will work closely with senior engineers on the team to build and maintain SOAR content, integrate our security tools, and support detection deployment efforts. This role offers a strong opportunity to grow professionally in the security field, with direct exposure to detection engineering, incident response, and a modern enterprise security stack.

Responsibilities

  • Own day-to-day operation of our SOAR platform.
  • Build and maintain automation playbooks for alert triage, enrichment, ticketing, and notifications.
  • Build and maintain integrations between SOAR and the broader security stack via APIs.
  • Monitor integration health, API connections, and credential rotation across automated workflows.
  • Measure and report on automation impact: alerts auto-resolved, analyst time saved, and MTTR reduction.
  • Support detection engineering on testing, deployment, and rollout of new content.
  • Write small scripts to support ad-hoc threat hunting and IR work.
  • Create and maintain technical documentation for playbooks and integrations.

Requirements

PythonJavaScript
  • 1–2 years of hands-on experience in IT, SOC, or Security Engineering. Internships, home labs, and personal projects count.
  • Scripting skills in Python; familiarity with JavaScript or Bash is a plus.
  • Comfortable working with REST APIs, JSON, and webhooks.
  • Understanding of networking and protocol fundamentals: TCP/IP, DNS, HTTP, authentication flows.
  • Familiarity with at least one SOAR platform is a strong plus.
  • Exposure to SIEM, EDR, or cloud security tools is a plus.
  • Attention to detail and structured thinking.
  • Clear written communication.

Benefits & Perks

Great work environment
Professional development
Challenging careers
Competitive compensation
Great work-life balance
Great benefits and perks throughout the year

About Checkmarx

Checkmarx is a global leader in software security, founded in 2006 and based in Paramus, New Jersey. The company specializes in integrating automated software security technologies into DevOps environments, helping enterprises secure their application development from code to cloud. With a workforce of 700 to 900 employees, Checkmarx serves over 1,400 customers in 70 countries, including more than 40 Fortune 100 companies. The Checkmarx Software Security Platform offers a range of solutions, including Static Application Security Testing (SAST), Interactive Application Security Testing (IAST), Software Composition Analysis (SCA), and Infrastructure as Code Security Testing (KICS). These tools are designed to identify vulnerabilities early in the development lifecycle and enhance developer awareness of secure coding practices. Checkmarx focuses on unifying security testing with DevOps workflows, enabling enterprises to maintain security without hindering development speed. The company is also recognized for its research team, which has uncovered significant vulnerabilities in popular technologies and IoT devices.

Industry

computer & network security

Employees

960

347 engineers

Revenue

$210M

Website

Visit →

Security at Checkmarx

Compiled from public job postings, careers pages, and company materials. Data may not reflect current state — verify during interviews.

3 Intel Signals

Security Philosophy

Checkmarx publicly states a developer-focused, shift-left orientation and embeds security into developer workflows and IDEs.

Security Team

Public materials do not contain explicit, verifiable statements about Checkmarx's internal AppSec org structure, reporting lines, named AppSec leaders (internal), team size, or detailed vulnerability triage SLAs. Active AppSec job posting counts on corporate career pages were not discoverable in the scraped pages. Where direct evidence is absent, report states "Information not publicly available."

Key Initiatives

  • Checkmarx describes Application Security Posture Management (ASPM) for consolidating and prioritizing vulnerabilities across the SDLC.
  • Checkmarx highlights Agentic AI/Developer Assist for remediation guidance, prioritization, and reducing noise.
  • Checkmarx states integrations into IDEs, SCMs, and CI/CD pipelines and continuous automated testing.
  • Checkmarx advocates collaboration between security and development and describes automation plus human oversight.

Preparing for an AppSec interview?

Get the weekly briefing 2,000+ security pros trust.

Interested in this role?

Apply on LinkedIn