We are seeking a senior SOC/SIEM/SOAR Consultant Senior Engineer to join our project. Experience working in large multi-tenant environment such as MSSP or Goveronment is highly desired for this senior. You will join a team of highly skilled engineers working to deliver a fully integrated SOC technology landscape for the client. Experience with Palo Alto Cortex XSIAM would be desirable but not a must.
Must have expertise working with SOAR, Automation and Incident Management paltforms.
Key Responsibilities
Platform Migration & Deployment
· Participate and guide SIEM and SOAR capabilities from QRadar and CP4S onto XSIAM.
· Inventory and assess existing SOAR playbooks, runbooks, and automation — deciding what to migrate, what to rebuild, and what to drop.
· Design content lifecycle management for a multi-tenant environment — versioning, promotion, tuning, and retirement of detection content.
· Ensure log data is parsed and mapped correctly
· Create dashboards and panels to assist analysts in investigating issues and cases
· Enable advanced features in XSIAM
· Define the target operating model on XSIAM — incident management, shift handover, automation development, and knowledge management.
· Build the workflows and automations in XSIAM, and bring the SOC team along so they own them after you leave.
· Migrate and rebuild CP4S playbooks and SOAR automation inside XSIAM''''''''''''''''''''''''''''''''s automation engine.
· Protect data integrity, alert fidelity, and detection coverage throughout cutover — no dark windows.
Never miss an opportunity! Create an alert based on the job you applied for.