9 Cortex Xsiam Jobs

Deploy Palo Alto Cortex XSIAM. Build collectors, parsers, playbooks. Develop scripts and APIs. Onboard log sources, troubleshoot. Require Palo Alto XDR/XSOAR experience, Python/Bash, threat-hunting expertise, documentation and training skills. Required Candidate profile . Responsibilities include tuning detection rules, creating dashboards and reports, and collaborating with SOC and threatintel teams to improve detection efficacy

5+years of exp in cybersecurity engineering, SIEM/SOAR administration, or SOC architecture. Min 3+ yrs of direct hands-on or leadership exp with Palo Alto Cortex XSIAM and XSOAR.Expertise in XQL(Cortex Query Language), detection lifecycle management.

Job Description As a Senior SOC Analyst, you will play a key role in detecting, analyzing, and responding to cybersecurity incidents across IDEMIA's global environments (Office, R&D, Production, Cloud). You will also dedicate some time to improving detection, response, and automation capabilities, helping evolve our SOC into a proactive, automation-driven defense center. Key Responsibilities - Incident Detection & Response - Monitor and triage security alerts from multiple sources including Cortex XSIAM, SIEM, EDR, and SOAR platforms, ensuring accurate prioritization and response. Lead complex incident investigations, including advanced persistent threats (APT), lateral movement, privilege e...

Key skills : Develop and optimize automation playbooks within XSOAR platforms. Design and implement custom integrations with third-party tools using Python. Maintain and enhance SOAR platform infrastructure, including setup, configuration, upgrades, data purging etc. Troubleshoot playbook or integration issues and ensure high availability of SOAR services. Ability to work in a 24x7 rotational shift environment.

Key skills : Minimum 2+ years of direct hands-on or leadership experience with Palo Alto Cortex XSIAM and XSOAR. Expertise in XQL (Cortex Query Language), detection lifecycle management, and data analytics workflows. Proven experience managing log ingestion pipelines, schema design, and correlation logic in large-scale SOC environments. Deep understanding of threat detection, response workflows, and behavior-based analytics. Strong leadership skills with experience building and guiding high-performing engineering teams. Proficiency in Python, JSON, or REST API integrations for extending platform capabilities. Familiarity with MITRE ATT&CK, NIST CSF, ISO 27001, and related frameworks. Excelle...

As an experienced professional with over 10 years in Information Security, including 5 years in SOC or Managed Security leadership, you will be responsible for leading SOC operations and ensuring 24/7 threat monitoring. Your deep understanding of cloud architectures, workload protection, and identity management will be essential in driving vulnerability management, patch governance, and proactive threat mitigation. You must have hands-on experience with SIEM/SOAR tools such as Splunk, ArcSight, Cortex XSIAM, QRadar, and Microsoft Sentinel. Your expertise in threat hunting, malware analysis, endpoint security, and cloud security monitoring will play a crucial role in managing and securing mul...

Role Overview: You will be responsible for leading SOC operations across L1-L3 analysts, ensuring 24/7 threat monitoring. Your role will involve driving vulnerability management, patch governance, and proactive threat mitigation. You will also manage and secure multi-cloud environments, ensuring compliance and incident readiness. Additionally, you will oversee cloud security posture management (CSPM) and identity access governance (IAM). Leading incident response, RCA, and recovery for major on-prem and cloud-based incidents will be part of your responsibilities. You will also conduct enterprise-wide risk assessments, audits, and compliance checks and ensure alignment with frameworks like NI...

Who We Are At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl We are always moving forward - always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities. The Role Kyndryl's Security & Resiliency is one of our most critical practices, ensuring enterprises, regardless of their size and complexity, remain secure, available, reliable, and resilient. We take Cybersecurity seriously. We're not just invested we're committed. We're not just protecting data we're empowering. Kyndryl is committed to making the worl...

Required Skills and Experience 8 to 12 years of security analyst experience, preferably in a managed service XSIAM Engineer In-depth expertise in Palo Alto Networks Cortex XSIAM (XSOAR) platform. Proficient in scripting languages (e.g., Python, JavaScript) for creating automated workflows and integrations. Strong understanding of security technologies such as SIEM, SOAR, EDR, XDR and threat intelligence platforms. Hands-on experience with Cortex XSIAM integrations (e.g., RESTful APIs, webhooks, etc.). Experience with developing and tuning playbooks, tasks, and workflows within the Cortex XSIAM platform. Knowledge of security best practices and frameworks such as MITRE ATT&CK, NIST, ISO 27001...