Overview
Skills
Job Details
Role Description:
Will work closely on Palo Alto XSOAR platform to customize it as needed Will closely integrate existing Security Operation Center (SOC) systems through development and reuse of well-defined APIs
Working with stakeholders for onboarding new data sources on Splunk (or any other SIEM tool) and perform periodic maintenance activities
Deploy and evaluate external proof-of-concept tools
Help with automation of various SOC related manual tasks.
Competencies: Digital : Splunk
Experience (Years): 6-8
Essential Skills:
ship Holder and No Dual Citizenship
Min. 2 years of experience in customization on any SOAR (Security Orchestration, Automation and Response) tool preferably Palo Alto XSOARMin.
5 years of development experience with Python and web frameworks (Django, Flask)
Experience with log management andor SIEM technologies such as Splunk
Web development frontend skills: JavaScript, jQuery, HTMLCSS.
Experience in creating & reusing Restful APIs to improve integration between existing and new security systems.
SQL database or any other Dbs.
Good communication skills.
Highly motivated individual with the ability to self-start, prioritize, and multi-task.
Interest in cyber security, willingness to follow security best practices
Ability to understand code written in other scripting languages.
Knowledge of incident response (SecOps)Eagerness to look for and evaluate available open-source incident responsethreat intelligence tools.
Strong focus on writing high quality technical documentation.
Good knowledge of Linux, git, nginx