Cybersecurity Automation Soar/xsoar Engineer
Posted 1 day ago by 1752301848
Negotiable
Outside
Remote
USA
Summary: The role is for a Cybersecurity Automation SOAR/XSOAR Engineer, requiring expertise in security automation, AWS infrastructure services, and specifically Palo Alto XSOAR. Candidates must have a minimum of 5 years of IT experience and strong technical knowledge in AWS security services. The position is remote and emphasizes the need for specific qualifications and personal information for candidate verification. The employer has indicated that previous submissions have not met the required qualifications.
Key Responsibilities:
- Develop and implement automation scripts for security use cases, particularly in AWS.
- Design, implement, and maintain the Palo Alto XSOAR platform.
- Build and modify playbooks, develop custom automations, and integrate with various security tools.
- Collaborate with Security Operations Center (SOC) teams to enhance incident response workflows.
- Configure and manage Threat Intelligence Management (TIM) features in XSOAR.
- Identify opportunities to automate repetitive security tasks and processes.
- Document playbooks to automate security controls and processes for AWS.
Key Skills:
- Expertise in Cybersecurity automation and SOAR.
- Strong hands-on experience with XSOAR.
- Foundational knowledge of Cybersecurity.
- AWS security experience.
- Proficiency in automation scripting, preferably in Python.
- Ability to design and implement security automation solutions.
- Palo Certified Security Automation Engineer (PCSAE) preferred.
- Understanding of regulatory security controls (NIST, PCI, ISO 27001, HIPAA).
- Experience with FedRamp compliant projects is a plus.
Salary (Rate): undetermined
City: undetermined
Country: USA
Working Arrangements: remote
IR35 Status: outside IR35
Seniority Level: undetermined
Industry: IT
URGENT BACK FILL ROLE
T+S
Remote Role
LinkedIn must be created before 2021
Need Visa copy
Must Have :-
1. NEED PERSONAL EMAIL & PERSONAL PHN NO.
2. Atleat 2 online account associated with this email without counting Gmail and Linkedin.(Like facebook, netflix and more)
3. LINKED MUST BE CREATED BEFORE 2021
4.Names associated with this email address partially the same.
5.Phone number is associated with a traditional phone carrier.
6. At least one similar name associated with this phone number.
7 The email should old enough to have any public record
The candidates need experience with XSOAR. SOAR and XSOAR are not the same thing. Palo Alto XSOAR is specifically a skill this team requires
None of the candidates submitted to us have been qualified. We need someone with expertise in security automation, AWS infrastructure services and XSOAR
I ve attached a resume of the type of candidate needed.
Skills (EXPERT/ADVANCED/NONE)
Cybersecurity automation SOAR Engineer
Someone with strong XSOAR hands-on experience.
Foundational Cybersecurity knowledge
AWS security experience
Questions (must reply YES to ALL):
Are you Holder?
Do you have XSOAR expertise?
Description:
At least 5+ years of experience in the IT industry with strong technical knowledge on AWS Infrastructure & security services (EC2, ELB, Guardduty, Config, Inspector, Security Hub, RDS, Route53, S3, vpc, vpn, tgw, cloudwatch, cloudtrail, eventbridge, etc.)
Strong security automation experience and ability to convert security use cases to automation scripts especially covering large set of AWS specific use cases.
Strong proficiency in XSOAR platform, including playbook development, automation scripting (Python preferred), and integration management.
Strong working experience in XSOAR product with the ability to design, implement, and maintain the Palo Alto XSOAR platform.
Ability to build new or modify existing Playbooks, develop custom playbooks, automations, and integrations with various security tools and technologies.
Ability to configure and manage Threat Intelligence Management (TIM) features in XSOAR
Identify opportunities to automate repetitive security tasks and processes using XSOAR.
Ability to develop/document playbooks to automate security controls and processes for AWS.
Collaborate with Security Operations Center (SOC) teams to streamline incident response workflows.
Palo Certified Security Automation Engineer (PCSAE) preferred
Good understanding of security controls related to regulatory requirements, such as NIST, PCI, ISO 27001, HIPAA compliance etc
Experience working on FedRamp compliant projects is a plus.