Platform Engineer (Specialist) Cybersecurity Automation & AI (Remote)
- Merck Expired
- Lansing, Michigan
- Full Time
This job ad was removed 4 hours ago.
Job Description
**Position Summary:**
We are hiring a Platform Engineer to join the Cybersecurity Automation & AI team. This is not a traditional automation roleyou will help design and deliver the next generation of cybersecurity systems through secure, intelligent automation. You will build workflows that integrate across Microsoft Defender XDR, Sentinel, ServiceNow, and other enterprise platforms, enabling automation pipelines that support AI-driven defense and enterprise-scale risk reduction.
**Job Description:**
Youll be working in a forward-leaning engineering function focused on transforming how cybersecurity operatesless detection, more design. The systems you build will be foundational to how we scale AI, automate risk response, and reduce manual toil across the enterprise.
As a Platform Engineer, youll support the development of cross-platform cybersecurity automation workflows under the direction of the Platform Engineering Lead. You will be expected to go beyond implementationto understand platform capabilities, evaluate extensibility, and help shape secure automation patterns that scale.
This role requires **working knowledge of cybersecurity** not just scripting or tool familiarity. You must understand why specific workflows exist (e.g., identity verification, privilege revocation, endpoint containment), what constitutes a secure pattern, and how your automation affects broader enterprise risk posture.
You wont own the toolsbut you must deeply understand how to interact with them via APIs, orchestration frameworks, and platform-native automation features.
**Key Responsibilities:**
+ Build and support automation workflows across security platforms such as ServiceNow, Defender XDR, and Sentinel.
+ Learn and apply platform-native capabilities, APIs, and extensibility models to solve real-world security automation challenges.
+ Contribute to orchestration logic that includes trigger conditions, telemetry tagging, enrichment, and response actions.
+ Implement automation scripts and integrations using Python, PowerShell, and REST APIs.
+ Participate in test planning, safety validation, change control, and rollback design.
+ Document technical implementations, integration patterns, and decision logic.
+ Collaborate with engineers and domain owners to identify automation opportunities.
+ Apply cybersecurity understanding to ensure automation is relevant, secure, and impactful.
**Required Qualifications:**
+ 12 years of hands-on experience in security engineering, IT automation, or platform integration; candidates with strong project-based or adjacent technical experience will be considered
+ Experience with at least one enterprise platform such as Microsoft Defender, Sentinel, or ServiceNow
+ Proficient in scripting (Python, PowerShell) and building workflows using REST APIs
+ Strong understanding of cybersecurity fundamentals (e.g., least privilege, threat response, asset visibility, risk signals)
+ Ability to translate security goals into platform-appropriate automation
+ Comfortable operating in a federated environment where tools are not owned directly
**Preferred Qualifications:**
+ Experience with ServiceNow Flow Designer or IntegrationHub
+ Exposure to multiple cybersecurity domains such as IAM, endpoint protection, or SIEM
+ Experience building automation in large, regulated environments
+ Familiarity with kill switch design, governance, and rollback in automation workflows
+ Clear documentation and collaboration skills across cross-functional engineering teams
Current Employees apply HERE (
Current Contingent Workers apply HERE (
**US and Puerto Rico Residents Only:**
Our company is committed to inclusion, ensuring that candidates can engage in a hiring process that exhibits their true capabilities. Please click here ( if you need an accommodation during the application or hiring process.
As an Equal Employment Opportunity Employer, we provide equal opportunities to all employees and applicants for employment and prohibit discrimination on the basis of race, color, age, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability status, or other applicable legally protected characteristics. As a federal contractor, we comply with all affirmative action requirements for protected veterans and individuals with disabilities. For more information about personal rights under the U.S. Equal Opportunity Employment laws, visit:
EEOC Know Your Rights (
EEOC GINA Supplement
We are proud to be a company that embraces the value of bringing together, talented, and committed people with diverse experiences, perspectives, skills and backgrounds. The fastest way to breakthrough innovation is when people with diverse ideas, broad experiences, backgrounds, and skills come together in an inclusive environment. We encourage our colleagues to respectfully challenge one anothers thinking and approach problems collectively.
Learn more about your rights, including under California, Colorado and other US State Acts (
**U.S. Hybrid Work Model**
Effective September 5, 2023, employees in office-based positions in the U.S. will be working a Hybrid work consisting of three total days on-site per week, Monday - Thursday, although the specific days may vary by site or organization, with Friday designated as a remote-working day, unless business critical tasks require an on-site presence.This Hybrid work model does not apply to, and daily in-person attendance is required for, field-based positions; facility-based, manufacturing-based, or research-based positions where the work to be performed is located at a Company site; positions covered by a collective-bargaining agreement (unless the agreement provides for hybrid work); or any other position for which the Company has determined the job requirements cannot be reasonably met working remotely. Please note, this Hybrid work model guidance also does not apply to roles that have been designated as remote.
**San Francisco Residents Only:** We will consider qualified applicants with arrest and conviction records for employment in compliance with the San Francisco Fair Chance Ordinance
**Los Angeles Residents Only:** We will consider for employment all qualified applicants, including those with criminal histories, in a manner consistent with the requirements of applicable state and local laws, including the City of Los Angeles Fair Chance Initiative for Hiring Ordinance
**Search Firm Representatives Please Read Carefully**
Merck & Co., Inc., Rahway, NJ, USA, also known as Merck Sharp & Dohme LLC, Rahway, NJ, USA, does not accept unsolicited assistance from search firms for employment opportunities. All CVs / resumes submitted by search firms to any employee at our company without a valid written search agreement in place for this position will be deemed the sole property of our company. No fee will be paid in the event a candidate is hired by our company as a result of an agency referral where no pre-existing agreement is in place. Where agency agreements are in place, introductions are position specific. Please, no phone calls or emails.
**Employee Status:**
Regular
**Relocation:**
**VISA Sponsorship:**
**Travel Requirements:**
**Flexible Work Arrangements:**
Remote
**Shift:**
**Valid Driving License:**
**Hazardous Material(s):**
**Job Posting End Date:**
05/13/2025
***A job posting is effective until 11:59:59PM on the day** **BEFORE** **the listed job posting end date. Please ensure you apply to a job posting no later than the day** **BEFORE** **the job posting end date.**
**Requisition ID:** R347249
**Position Summary:**
We are hiring a Platform Engineer to join the Cybersecurity Automation & AI team. This is not a traditional automation roleyou will help design and deliver the next generation of cybersecurity systems through secure, intelligent automation. You will build workflows that integrate across Microsoft Defender XDR, Sentinel, ServiceNow, and other enterprise platforms, enabling automation pipelines that support AI-driven defense and enterprise-scale risk reduction.
**Job Description:**
Youll be working in a forward-leaning engineering function focused on transforming how cybersecurity operatesless detection, more design. The systems you build will be foundational to how we scale AI, automate risk response, and reduce manual toil across the enterprise.
As a Platform Engineer, youll support the development of cross-platform cybersecurity automation workflows under the direction of the Platform Engineering Lead. You will be expected to go beyond implementationto understand platform capabilities, evaluate extensibility, and help shape secure automation patterns that scale.
This role requires **working knowledge of cybersecurity** not just scripting or tool familiarity. You must understand why specific workflows exist (e.g., identity verification, privilege revocation, endpoint containment), what constitutes a secure pattern, and how your automation affects broader enterprise risk posture.
You wont own the toolsbut you must deeply understand how to interact with them via APIs, orchestration frameworks, and platform-native automation features.
**Key Responsibilities:**
+ Build and support automation workflows across security platforms such as ServiceNow, Defender XDR, and Sentinel.
+ Learn and apply platform-native capabilities, APIs, and extensibility models to solve real-world security automation challenges.
+ Contribute to orchestration logic that includes trigger conditions, telemetry tagging, enrichment, and response actions.
+ Implement automation scripts and integrations using Python, PowerShell, and REST APIs.
+ Participate in test planning, safety validation, change control, and rollback design.
+ Document technical implementations, integration patterns, and decision logic.
+ Collaborate with engineers and domain owners to identify automation opportunities.
+ Apply cybersecurity understanding to ensure automation is relevant, secure, and impactful.
**Required Qualifications:**
+ 12 years of hands-on experience in security engineering, IT automation, or platform integration; candidates with strong project-based or adjacent technical experience will be considered
+ Experience with at least one enterprise platform such as Microsoft Defender, Sentinel, or ServiceNow
+ Proficient in scripting (Python, PowerShell) and building workflows using REST APIs
+ Strong understanding of cybersecurity fundamentals (e.g., least privilege, threat response, asset visibility, risk signals)
+ Ability to translate security goals into platform-appropriate automation
+ Comfortable operating in a federated environment where tools are not owned directly
**Preferred Qualifications:**
+ Experience with ServiceNow Flow Designer or IntegrationHub
+ Exposure to multiple cybersecurity domains such as IAM, endpoint protection, or SIEM
+ Experience building automation in large, regulated environments
+ Familiarity with kill switch design, governance, and rollback in automation workflows
+ Clear documentation and collaboration skills across cross-functional engineering teams
Current Employees apply HERE (
Current Contingent Workers apply HERE (
**US and Puerto Rico Residents Only:**
Our company is committed to inclusion, ensuring that candidates can engage in a hiring process that exhibits their true capabilities. Please click here ( if you need an accommodation during the application or hiring process.
As an Equal Employment Opportunity Employer, we provide equal opportunities to all employees and applicants for employment and prohibit discrimination on the basis of race, color, age, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability status, or other applicable legally protected characteristics. As a federal contractor, we comply with all affirmative action requirements for protected veterans and individuals with disabilities. For more information about personal rights under the U.S. Equal Opportunity Employment laws, visit:
EEOC Know Your Rights (
EEOC GINA Supplement
We are proud to be a company that embraces the value of bringing together, talented, and committed people with diverse experiences, perspectives, skills and backgrounds. The fastest way to breakthrough innovation is when people with diverse ideas, broad experiences, backgrounds, and skills come together in an inclusive environment. We encourage our colleagues to respectfully challenge one anothers thinking and approach problems collectively.
Learn more about your rights, including under California, Colorado and other US State Acts (
**U.S. Hybrid Work Model**
Effective September 5, 2023, employees in office-based positions in the U.S. will be working a Hybrid work consisting of three total days on-site per week, Monday - Thursday, although the specific days may vary by site or organization, with Friday designated as a remote-working day, unless business critical tasks require an on-site presence.This Hybrid work model does not apply to, and daily in-person attendance is required for, field-based positions; facility-based, manufacturing-based, or research-based positions where the work to be performed is located at a Company site; positions covered by a collective-bargaining agreement (unless the agreement provides for hybrid work); or any other position for which the Company has determined the job requirements cannot be reasonably met working remotely. Please note, this Hybrid work model guidance also does not apply to roles that have been designated as remote.
**San Francisco Residents Only:** We will consider qualified applicants with arrest and conviction records for employment in compliance with the San Francisco Fair Chance Ordinance
**Los Angeles Residents Only:** We will consider for employment all qualified applicants, including those with criminal histories, in a manner consistent with the requirements of applicable state and local laws, including the City of Los Angeles Fair Chance Initiative for Hiring Ordinance
**Search Firm Representatives Please Read Carefully**
Merck & Co., Inc., Rahway, NJ, USA, also known as Merck Sharp & Dohme LLC, Rahway, NJ, USA, does not accept unsolicited assistance from search firms for employment opportunities. All CVs / resumes submitted by search firms to any employee at our company without a valid written search agreement in place for this position will be deemed the sole property of our company. No fee will be paid in the event a candidate is hired by our company as a result of an agency referral where no pre-existing agreement is in place. Where agency agreements are in place, introductions are position specific. Please, no phone calls or emails.
**Employee Status:**
Regular
**Relocation:**
**VISA Sponsorship:**
**Travel Requirements:**
**Flexible Work Arrangements:**
Remote
**Shift:**
**Valid Driving License:**
**Hazardous Material(s):**
**Job Posting End Date:**
05/13/2025
***A job posting is effective until 11:59:59PM on the day** **BEFORE** **the listed job posting end date. Please ensure you apply to a job posting no later than the day** **BEFORE** **the job posting end date.**
**Requisition ID:** R347249
Job ID: 475149073
Originally Posted on: 4/30/2025
Want to find more Technology opportunities?
Check out the 160,640 verified Technology jobs on iHireTechnology
Similar Jobs
Sign Up for Job Alerts
