Secur-ServRemote
Security Automation Engineer
United States of America
Full Time
4 days ago
$120,000 - $140,000 USD
Visa Sponsor
Key skills
PythonRESTfulCommunication
About this role
Secur-Serv is a company focused on delivering advanced security solutions, and they are seeking a Security Automation Engineer to design, implement, and optimize automation playbooks within the Cortex XSIAM platform. The role involves developing custom integrations, transforming manual processes into automated workflows, and collaborating with customer security teams to enhance automation capabilities.
Responsibilities:
- End-to-End Automation: Design, build, and maintain complex automation playbooks to standardize and accelerate incident response and security operations
- Workflow Engineering: Analyze manual SOC processes and transform them into automated, scalable workflows
- Content Management: Manage and deploy content packs, custom layouts, and automated dashboards tailored to customer use cases
- Custom Integrations: Develop and maintain custom integrations using Python to connect XSIAM with third-party security tools and internal systems
- API Utilization: Leverage RESTful APIs and JSON data structures to facilitate seamless communication between security platforms
- Troubleshooting: Perform health checks and troubleshooting for integration scripts and automation flows
- Subject Matter Expertise: Act as a technical authority on XSIAM and XSOAR automation best practices
- Stakeholder Engagement: Collaborate with customer security teams to define automation roadmaps and success metrics
- Knowledge Transfer: Conduct technical workshops and sessions to enable customers to manage and expand their automation capabilities
Requirements:
- Cortex XSOAR/XSIAM: Proven experience in building playbooks and managing integrations within the Cortex ecosystem
- Python Programming: Strong proficiency in Python for security tool development and automation scripting
- Security Operations: Deep understanding of incident response cycles and SOC workflows
- API Development: Extensive experience working with security tool APIs
- Certifications: Palo Alto Networks certifications (e.g., PCNSE, PCDRA, or specialized XSOAR/XSIAM credentials)