Valid Secret security clearance requiredXSOAR Architect (Design, Implementation & Deployment) Role Overview Design and lead the implementation of Palo Alto Cortex Security Orchestration, Automation, and Response (XSOAR) to enable Security Incident Management (SecIM), automation, and orchestration integrated with the Elastic Security Information and Event Management (SIEM) platform.Key ResponsibilitiesDesign XSOAR architecture and deployment model (multi‑tenant, scalable)Define incident ingestion workflows from Elastic SIEM into XSOARDesign automation strategy and playbook frameworkPlaybook isolationRole‑Based Access Control (RBAC) modelDesign integrations with:SIEMEndpoint Detection and Response (EDR) platformsFirewalls and network security toolsIdentity and Access Management (IAM) systemsTicketing systems (ServiceNow, Jira)Define incident lifecycle and case management model (SecIM)Human‑in‑the‑loop controlsDefine high availability (HA), disaster recovery (DR), and backup strategiesEnsure alignment with Security Assessment and Authorization (SA&A) and compliance requirementsCollaborate with Elastic, Google Cloud Platform (GCP), and network architecture teamsRequired SkillsStrong experience with Palo Alto Cortex XSOAR architectureDeep understanding of Security Operations Centre (SOC) workflowsExpertise in automation and orchestration designExperience integrating security tools and application programming interfaces (APIs)Strong knowledge of incident response processes and frameworksUnderstanding of multi‑tenant security platform designIdeal Candidate Experience7-10+ years in Security Operations, Incident Response, or Security Architecture3-5+ years hands‑on experience with Cortex XSOARExperience integrating SIEM, EDR, identity, and network toolsExperience in multi‑tenant or Managed Security Service Provider (MSSP) environmentsStrong understanding of automation governance and risk managementExperience in regulated environmentsExperience designing high‑availability and disaster recovery architectures#J-18808-Ljbffr