Palo Alto Networks XSIAM Expert / Engineer

Job Category: Engineering
Location: Remote
Duration: 12+ months

Job Description:

We are seeking a highly skilled Palo Alto Networks XSIAM Expert to lead the design, deployment, and optimization of security operations using XSIAM (Extended Security Intelligence & Automation Management). This role will focus on modernizing SOC capabilities through automation, AI-driven analytics, and integrated security workflows.

Key Responsibilities:

  • Lead implementation and administration of Palo Alto Networks XSIAM platform
  • Design and optimize SOC workflows, automation, and incident response playbooks
  • Integrate XSIAM with existing tools (SIEM, SOAR, EDR, firewalls, cloud platforms)
  • Develop and tune detection rules, correlation logic, and analytics
  • Build and maintain automation playbooks to reduce manual SOC effort
  • Perform threat hunting and incident investigations using XSIAM data lake
  • Collaborate with security, network, and cloud teams to improve visibility and response
  • Monitor platform performance and ensure data ingestion pipelines are optimized
  • Provide guidance on security best practices, MITRE ATT&CK mapping, and threat modeling
  • Mentor junior analysts and engineers on XSIAM capabilities

Required Qualifications:

  • 5+ years of experience in Cybersecurity / SOC / SIEM / SOAR
  • Hands-on experience with Palo Alto Networks XSIAM (or Cortex XDR/XSOAR as a foundation)
  • Strong understanding of:
    • SIEM/SOAR concepts
    • Threat detection and response
    • Log ingestion and normalization
    • Experience with query languages (e.g., XQL preferred)
    • Familiarity with MITRE ATT&CK framework
    • Experience integrating security tools and APIs
    • Strong knowledge of networking fundamentals (TCP/IP, DNS, firewalls)

Preferred Qualifications:

  • Experience with:
  • Palo Alto Cortex XDR / XSOAR / Prisma Cloud
  • Cloud platforms (AWS, Azure, GCP)
  • Scripting (Python, PowerShell)
  • Relevant certifications:
    • Palo Alto Networks (PCSAE, PCCSE, Cortex certifications)
    • CISSP, GCIA, GCIH (nice to have)

Key Skills:

  • Security Operations & Incident Response
  • Threat Hunting & Detection Engineering
  • Automation & Orchestration
  • Data Analysis & Log Correlation
  • Strong problem-solving and communication skills

Nice-to-Have Experience:

  • Migrating from legacy SIEM to XSIAM
  • Building AI-driven SOC workflows
  • Handling large-scale security data environments

Apply for this position

Allowed Type(s): .pdf, .doc, .docx

Previous

Network Designer

Next

Senior Engineer Cisco SD-WAN