Palo Alto Cortex XSIAM Specialist

We are seeking a senior SOC/SIEM/SOAR Consultant Architect to lead the deployment, calibration, and process transformation behind our migration from IBM QRadar and IBM Cloud Pak for Security (CP4S) to Palo Alto Networks Cortex XSIAM. 

This engagement suits seasoned SOC practitioners with hands-on XSIAM or XSOAR expertise in MSSP and multi-tenant environments.

Role Overview

As Senior SOC Consultant, you will be the architect of how our modern, MSSP-delivered SOC operates on XSIAM — shaping the target state across SIEM, SOAR, and XDR. You''''ll partner directly with SOC leadership, engineering, and business stakeholders to make sure this migration is a genuine uplift in detection, response, and analyst experience — not just a platform swap.

Key Responsibilities 

Platform Migration & Deployment

·        Participate and guide SIEM and SOAR capabilities from QRadar and CP4S onto XSIAM.

·        Inventory and assess existing CP4S playbooks, runbooks, and automation — deciding what to migrate, what to rebuild, and what to drop.

·        Design content lifecycle management for a multi-tenant environment — versioning, promotion, tuning, and retirement of detection content.

·        Ensure log data is parsed and mapped correctly

·        Create dashboards and panels to assist analysts in investigating issues and cases

·        Enable advanced features in XSIAM

·        Define the target operating model on XSIAM — incident management, shift handover, automation development, and knowledge management.

·        Build the workflows and automations in XSIAM, and bring the SOC team along so they own them after you leave.

·        Migrate and rebuild CP4S playbooks and SOAR automation inside XSIAM''''s automation engine.

·        Protect data integrity, alert fidelity, and detection coverage throughout cutover — no dark windows.