Job Description

We are looking for a SOAR/SIEM Engineer with expertise in Palo Alto XSOAR, Splunk, and Python to support and enhance Security Operations Center (SOC) automation. This role involves customizing and integrating Palo Alto XSOAR, developing and utilizing RESTful APIs for seamless SOC system integration, onboarding data sources to SIEM tools, and automating security operations workflows. The engineer will also assist in evaluating proof-of-concept security tools and maintaining high-quality technical documentation.

• Customize and maintain the Palo Alto XSOAR platform for SOC automation.
• Develop RESTful APIs to integrate existing SOC tools and improve security workflows.
• Onboard and manage data sources in Splunk or other SIEM platforms.
• Automate SOC tasks using Python and scripting languages.
• Evaluate and deploy proof-of-concept security tools.
• Collaborate with stakeholders to implement security and compliance requirements.
• Troubleshoot and resolve security-related issues in SOAR/SIEM environments.
• Maintain detailed technical documentation for security processes and integrations.

Minimum 2 years of experience customizing SOAR platforms, preferably Palo Alto XSOAR .
5+ years of Python development experience with web frameworks like Django and Flask .
Expertise in SIEM platforms (Splunk) and log management.
Strong understanding of RESTful API development and system integrations.

Job Tags

Similar Jobs