We Love AI JobsWe Love AI JobsHave companies apply to you
Back to jobs

Pre-Sales Engineer Autonomous SOC & Hyperautomation

Imperum
Amsterdam Area
Full-time
AI tools:
AutoGPT
Applications go directly to the hiring team

Full Description

Pre-Sales Engineer Autonomous SOC & Hyperautomation -Autonomous SOC & Hyperautomation · Amsterdam or Remote (EU)

About Imperum & the role

Imperum is building an agentic AI platform for security operations – an autonomous SOC that detects, investigates, contains, and remediates threats with minimal human intervention. Hyperautomation is at the core of the product: AI agents that don’t just recommend actions, but execute them through workflows and playbooks that span the entire security stack.

We are hiring a Pre-Sales Engineer who can sell our platform technically – and prove it works by building real automation in front of customers. You will run discovery calls, deliver demos, scope and execute POCs, and author production-quality playbooks and Python integrations during evaluations. You are the difference between a prospect who is curious and a prospect who signs.

What you’ll doRun the technical sales motion

•     Lead technical discovery with SOC managers, detection engineers, security architects, and CISOs. Surface real use cases and real buying criteria.

•     Deliver tailored demos that hit the prospect’s actual environment and use cases. Generic demos lose deals; yours will not.

•     Scope and run POCs end-to-end: success criteria, environment setup, data integration, evaluation, debrief.

•     Handle the technical objections that kill deals: autonomy and control, data residency, model behavior, false positives, integration with existing SOAR / SIEM / EDR / ITSM.

•     Own RFI / RFP / security questionnaire responses for your accounts.

Build playbooks, agents, and integrations hands-on:

•     Author production-quality automation playbooks for real customer use cases: triage, enrichment, containment, response, ticketing, notifications.

•     Build custom AI agents in Imperum Agent Studio for prospect-specific use cases: triage agents, investigation agents, response agents, and bespoke domain logic that wins POCs.

•     Write Python integrations against customer tooling: SIEMs (Splunk, Elastic, Sentinel), EDRs (CrowdStrike, SentinelOne, MS Defender), ticketing (Jira, ServiceNow), identity (Okta, Entra ID), and more.

•     Design workflows that handle the messy reality: API rate limits, partial failures, idempotency, retries, audit trails, and human-in-the-loop checkpoints.

•     Build reference playbooks and demo content that the rest of the team can reuse.

•     Translate customer pain into working automation – fast – inside POC windows where every day matters.

Close the loop with Product and Engineering

•     Carry field feedback into Product weekly: integrations that need building, friction in the workflow editor, gaps that block deals.

•     Co-design improvements with Engineering; bring real POC scenarios that stress-test the platform.

•     Maintain the assets that let the team scale: demo environments, playbook libraries, integration catalogs, objection-handling notes.

What we’re looking forMust-have

•     EU nationality (or existing right to work in the EU without sponsorship). We are not able to sponsor work visas or relocation for this role.

•     Fluent English (spoken and written). It is our working language across customers, code, docs, and async communication.

•     5+ years in cybersecurity, with at least 2 years in a hands-on pre-sales, sales engineering, or solutions engineering role at a security vendor (SIEM, EDR/XDR, SOAR, MDR, or hyperautomation).

•     Strong Python. You write clean, testable Python every week. You can build an integration against an unfamiliar API in hours, not days. We will ask you to show recent code.

•     Proven workflow / playbook authoring experience. You have built real SOAR or hyperautomation playbooks in production – not just diagrams. You know how to design conditionals, loops, branching, error handling, and human-in-the-loop checkpoints that survive contact with real data.

•     Ability to build custom AI agents in Imperum Agent Studio. A core part of this role is designing and building bespoke agents for prospects and customers using our Agent Studio. We will train you on the platform, but you must arrive with the foundations: hands-on experience building agents on similar platforms (LangGraph, CrewAI, n8n with AI nodes, Tines/Torq with LLM steps, or equivalent), and a strong intuition for agent design \u2013 prompts, tools, memory, evaluation, and guardrails.

•     Solid SOC, IR, and detection-engineering literacy. Alert triage, the IR lifecycle, MITRE ATT&CK, common detection logic, SIEM and EDR fundamentals – enough to design a credible automation in front of a SOC team.

•     Hands-on POC delivery. You have personally stood up POC environments, integrated data sources, and run live demos. Comfortable in a terminal and on a Zoom call with a hostile evaluator.

•     Working fluency in agentic AI and LLMs. You can speak credibly about how AI agents fit into a SOC workflow, where they help, and where they fail. RAG, tool use, evaluations, and prompt injection are not new words to you.

•     AI-native developer. You use AI coding tools (Claude Code, Cursor, or equivalent) daily and have a clear view on how they make you faster without sacrificing quality.

•     Excellent communication. You can present to a CISO at 9am and pair with a detection engineer at 2pm in the same day, and be credible in both rooms.

Nice-to-have

•     Prior SOC or DFIR operator time served (analyst, detection engineer, IR consultant).

•     Experience with major SOAR platforms (Tines, Torq, XSOAR, Splunk SOAR, Swimlane) as a builder, not just a user.

•     Security certifications (GCIH, GCFA, GCDA, OSCP, or similar).

•     Working knowledge of one EU language beyond English (French, German, Spanish, Italian, Dutch).

•     Experience integrating LLMs into automation – enrichment, summarization, decision support, agentic steps.

How we work

•     Small, senior team. AI-first engineering culture; AI coding tools are core, not optional.

•     Strict 5-day idea-to-release cycles on the product side – you get fast answers and faster fixes.

•     Pre-Sales partners daily with the Field CTO, Sales, and Engineering. You are not on an island.

•     Async-friendly, remote-first, with regular in-person time when it matters.

What we offer

•     Compensation package combining competitive base salary, performance bonus tied to POC and deal outcomes, and RSUs.

•     Top-tier hardware, generous budget for AI tools, training, and conferences.

•     Flexible remote or hybrid setup.

•     A team where building real automation in front of real customers is the job, not a side activity.

How to apply

* Send your CV or LinkedIn, a link to recent code or a playbook you built (GitHub, gist, redacted screenshot – whatever you can share), and a short note on two things: (1) a POC where your hands-on build made the difference between winning and losing, and (2) the messiest customer integration you ever shipped, and what you learned from it.

Applications go to the hiring team directly