SOAR SME (Security Orchestration, Automation, and Response)

Job Description
As a SOAR Subject Matter Expert (SME), you will play a critical role in supporting our clients through the migration, implementation, and optimization of a Security Orchestration, Automation, and Response (SOAR) platform. This is a hands-on, technical position where you will guide the customer through transitioning their current capabilities to a more robust security posture using Cortex XSOAR. You will leverage your expertise to develop new capabilities tailored to the customer?s environment, enhancing their incident response through the orchestration of alerts across various sources and the automation of playbooks.
Your Impact
? Incident Response Support: Collaborate with customers to enhance their incident response processes by leveraging Cortex XSOAR for automated and orchestrated responses.
? Customer Understanding: Develop a deep understanding of the customer?s business requirements and analyze the threat landscape relevant to their industry?s specific vertical sector.
? Technical Leadership: Lead the technical implementation and operations of Cortex XSOAR within the customer?s environment, ensuring seamless integration with existing security infrastructure.
? Technology Integration: Work closely with the customer's Security and IT teams to integrate various security and IT technologies into the SOAR platform.
? Documentation Development: Create detailed documentation for Palo Alto Networks Cortex XSOAR playbooks, ensuring they are easy to understand and maintain.
? Solution Design: Refine and translate complex technical requirements into best-practice solutions that meet the customer's needs.
? Support & Advisory: Provide additional support and perform tasks related to Cortex XSOAR as needed to ensure the overall success of the project.
Qualifications
? Programming Skills: Proficiency in at least one programming language (e.g., Python, Go, Java/JavaScript, PowerShell).
? Enterprise Environment Management: Proven experience in managing complex security solutions in large, multi-tenant enterprise environments.
? Cloud Expertise: Strong understanding of Azure and its solutions, with advanced skills in managing public cloud environments.
? Operating Systems & Network Analysis: Proficiency in Linux/Unix systems, network troubleshooting, and analysis, as well as an understanding of current security threats.
? Incident Response Experience: Demonstrated experience in handling cybersecurity incident response, from detection to resolution.
? Security Technology Knowledge: In-depth knowledge of cybersecurity protocols, technologies, and applications, with hands-on experience in deploying and managing security solutions.
? Technical Implementation Experience: Strong experience in the installation, configuration, and operation of high-end security solutions, particularly related to SOAR platforms.
? Security Tools: Familiarity with tools like IDS/IPS, SIEM, endpoint solutions, and other security technologies.
? Communication Skills: Excellent verbal and written communication skills, with the ability to effectively convey complex technical concepts to stakeholders.
? Education & Experience: Bachelor?s degree in a relevant field or 5+ years of experience in related domains.
Preferred Skills
? Experience specifically with Palo Alto Cortex XSOAR, including playbook development and customization.
? Strong project management skills with the ability to lead technical teams in a collaborative environment.
? Certifications such as CISSP, CEH, or other relevant cybersecurity certifications are a plus.
This position offers an opportunity to work in a dynamic, fast-paced environment, collaborating with top-tier clients to enhance their security posture through cutting-edge SOAR capabilities. If you are passionate about cybersecurity and have a strong background in incident response and automation, we encourage you to apply.
Job Type: Contract
Pay: From $80,000.00 per year
Compensation Package:
? 1099 contract
? Yearly pay
Schedule:
? 8 hour shift
Experience:
? SQL: 1 year (Preferred)
? Selenium: 10 years (Preferred)
? Test automation: 10 years (Preferred)
Work Location: Remote