Palo Alto XSOAR/Cortex XSOAR Automation Engineer at Charlotte, NC / Dallas, TX (Hybrid Onsite)

  • Posted 17 hours ago | Updated 4 hours ago

Overview

Full Time
Part Time
Accepts corp to corp applications
Contract - W2
Contract - Independent
Contract - 12+ month(s)

Skills

Video
Collaboration
System On A Chip
Scalability
Workflow
Incident Management
Security Operations
Python
Customization
JSON
SIEM
Splunk
IBM QRadar
ArcSight
Threat Analysis
Problem Solving
Conflict Resolution
Communication
Palo Alto
Scripting
Cloud Security
DevSecOps

Job Details

Role : Palo Alto XSOAR/Cortex XSOAR Automation Engineer

Location : Charlotte, NC / Dallas, TX (Hybrid Onsite)

Duration: 12+ Months

Interview Mode: Video

Job Summary:

We are seeking a highly skilled and motivated Automation Engineer with 4 5 years of experience in Palo Alto Cortex XSOAR. The ideal candidate will be responsible for designing, developing, and maintaining automation playbooks and integrations within the XSOAR platform to enhance security operations and incident response capabilities. This is an onsite role requiring flexibility to work from either Dallas, Texas or Charlotte, North Carolina based on project needs.

Key Responsibilities:

  • Design and implement automation playbooks in Palo Alto Cortex XSOAR to streamline security operations workflows.
  • Develop custom integrations and scripts to connect XSOAR with various security tools and platforms.
  • Collaborate with SOC teams, incident responders, and threat analysts to understand requirements and deliver automation solutions.
  • Maintain and optimize existing playbooks and integrations for performance and scalability.
  • Troubleshoot and resolve issues related to automation workflows and platform functionality.
  • Document playbooks, configurations, and operational procedures.
  • Provide support during critical incidents and participate in on-call rotations as needed.

Required Skills & Qualifications:

  • 3 5 years of hands-on experience with Palo Alto Cortex XSOAR (Demisto).
  • Strong understanding of SOAR concepts, incident response, and security operations.
  • Proficiency in Python scripting for playbook development and integration customization.
  • Experience with REST APIs, JSON, and integration of third-party security tools.
  • Familiarity with SIEM platforms (e.g., Splunk, QRadar, ArcSight) and threat intelligence feeds.
  • Excellent problem-solving and communication skills.
  • Ability to work independently and collaboratively in a fast-paced environment.

Preferred Qualifications:

  • Palo Alto certifications (e.g., PCSAE) are a plus.
  • Experience with other automation platforms or scripting tools.
  • Exposure to cloud security and DevSecOps practices.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.