Valid Secret security clearance required Role OverviewDeploy, configure, and operationalize Palo Alto Cortex Security Orchestration, Automation, and Response (XSOAR), implementing automation playbooks, integrations, and incident workflows to support the Security Operations Centre (SOC). Key ResponsibilitiesDeploy and configure Cortex XSOAR platform components Implement incident ingestion from Elastic SIEM into XSOAR Build and maintain automation playbooksPhishing responseConfigure and maintain integrations withElastic SIEM Endpoint Detection and Response (EDR) tools Firewalls and network tools Identity and Access Management (IAM) systems Ticketing platforms (ServiceNow, Jira)Implement Role-Based Access Control (RBAC) and tenant separation Configure incident types, fields, layouts, and workflows (SecIM) Perform testing and validation of playbooks and integrations TroubleshootAPI connectivity issuesSupport platform monitoring, upgrades, and maintenance Assist with automation scripting (Python, APIs) Support deployment automation and configuration management Work closely with Architects and SOC teams to refine workflows Required SkillsHands‑on experience with Palo Alto Cortex XSOAR Experience building automation playbooks and integrations Strong knowledge of application programming interfaces (APIs) Scripting experience (Python preferred) Understanding of incident response workflows Experience with Linux systems and troubleshooting Ideal Candidate Experience3–7+ years in Security Operations, Incident Response, or Security Engineering 2–4+ years hands‑on experience with Cortex XSOAR Experience implementing playbooks and automation in production SOC environments Experience integrating SIEM, EDR, identity, and ticketing tools Familiarity withContinuous Integration and Continuous Deployment (CI/CD) pipelines Infrastructure as Code (IaC) (nice to have)Experience in large-scale or enterprise environments Exposure to regulated environments We’re committed to fostering an inclusive, equitable, and accessible workplace where every team member feels valued, respected, and supported, and has the opportunity to reach their full potential. We welcome and encourage applications from people with disabilities.#J-18808-Ljbffr