Future opportunity: Security Operations Engineer - Hyperautomation, Wayfinder MDR

Excited about future opportunities with us? This role is part of our talent pipeline, meaning we're proactively connecting with top talent for when the position officially opens. While we may not reach out right away, your application ensures you're first in line when the time comes. If you're looking to make an impact with us in the future, we’d love to hear from you!

What are we looking for?

Join our Wayfinder MDR organization, an elite Managed Detection & Response service protecting some of the world’s largest and most complex environments.

As a Senior Hyperautomation Engineer, you will be responsible for designing, building, and operating the automation layer that powers Wayfinder MDR. You will work closely with Threat Service Engineers (TSEs), SOC analysts, Threat Hunters, and R&D teams to transform manual SOC processes into scalable, reliable, and efficient automation workflows.

This role focuses on engineering and automation, not alert triage. You will help shape how MDR operates at scale by reducing manual workload, improving signal-to-noise ratio, and enabling faster and more consistent threat detection and response.

What will you do?

• Design, develop, and maintain hyperautomation workflows that support alert triage, enrichment, investigation, and response.
• Convert SOC playbooks, investigation logic, and threat-hunting processes into automated, production-grade workflows.
• Proactively identify repetitive or high-volume SOC tasks and implement automation to improve efficiency and consistency.
• Build and maintain integrations with internal platforms and third-party security tools using APIs, webhooks, and event-driven mechanisms.
• Collaborate closely with Threat Service Engineers (TSEs) and SOC teams to fine-tune existing detections and automation logic.
• Improve and optimize MDR operational processes to ensure fast response times and effective threat mitigation.
• Own automation workflows end-to-end, including design, deployment, monitoring, troubleshooting, and continuous improvement.
• Create and maintain automation playbooks, templates, and best practices to support incident response at scale.
• Work closely with R&D and product teams to provide operational feedback and help shape future detection and response capabilities.

What skills & knowledge should you bring?

• 5+ years of experience in Security Engineering, Automation Engineering, SOC Tooling, Backend Engineering, or similar technical roles.
• Strong experience with Python (required); experience with SQL is highly preferred.
• Experience building and operating automation workflows or backend services in production environments.
• Solid understanding of SOC operations, incident response workflows, and security alert lifecycles.
• Experience working with APIs, integrations, and distributed systems.
• Strong problem-solving skills with the ability to translate operational challenges into scalable engineering solutions.
• Professional and articulate, with strong written and verbal communication skills.
• Ability to manage multiple workstreams and prioritize effectively in a fast-paced environment.

Advantages

• Experience working in MDR, SOC, Threat Hunting, or Incident Response environments.
• Familiarity with cloud platforms (AWS preferred).
• Experience with security telemetry, alerting pipelines, SIEM/XDR concepts, or internal SOC tooling.
• Experience building internal tools for operational or security teams.

Why SentinelOne? 

AI is redefining how the world operates and rewriting the rules of security in real time, and SentinelOne was built for this moment. From day one, we architected an AI-native platform designed to operate at machine speed, not as an add-on to legacy systems but as the foundation itself. If you want to build where innovation and impact move together, this is that place.

We invest in our Sentinels with comprehensive, competitive benefits designed to support you and your family:

• Stock & Bonuses: Grant of Restricted Stock Units with a 4-year vesting plan, annual performance-based bonuses, and an employee stock purchase plan.
• Time Off & Well-being: Flexible Time Off, on top of the standard 5 weeks vacation, flexible paid sick days, fully paid Short Term Sick/Nursing Leave, 16-week parental leave, grandparent leave, and additional company holidays.
• Insurance & Health: Pension Insurance Contribution, Premium life insurance, Private medical care (for you and +1), and a Global Employee Assistance Program.
• Work Perks: Monthly meal and well-being allowance, high-end MacBook/Windows laptop, work-from-home support, and in-office refreshments.
• Growth & Community: LinkedIn Learning, internal mentoring, educational support, generous referral bonuses, and optional company events (sports, BBQs, charity).

Enjoy flexible hybrid work in Prague (Karlin), Brno (Clubco), or remotely across CZ/SK. Only Prague-based employees are required to work from the office at least two days per week.