Palo Alto Networks is dedicated to protecting the digital way of life and is seeking a Senior MSIAM SOC Engineer to enhance their cybersecurity efforts. The role involves refining detection logic, translating threat intelligence into actionable insights, and automating security processes to address emerging challenges.
Responsibilities:
- Drive the continuous refinement of correlation rules, ensuring all deployed detection logic meets strict standards for performance, accuracy, and operational relevance
- Translate Unit 42 threat intelligence research and emerging adversary TTPs into actionable, robust detection logic
- Champion proactive automation, engineering sophisticated playbooks to resolve emerging security challenges and optimize operational workflows ahead of demand
- Architect the end-to-end security lifecycle within Cortex XSIAM, seamlessly connecting data ingestion, high-fidelity detection engineering, and sophisticated response automation
Requirements:
- 5+ years of hands-on experience in a Senior SOC, Detection Engineering, or Security Architecture role utilizing SIEMs, firewalls, EDR, sandboxes, and SOAR platforms
- Proven mastery of the Detection Engineering lifecycle, including experience with rule testing frameworks, soft-deployment strategies, and continuous tuning
- Demonstrated experience reviewing and QA-ing detection logic written by others, with the ability to provide constructive optimization feedback
- Proactive engineering mindset with a track record of designing complex automation playbooks (Cortex XSOAR or similar) based on anticipated threat vectors, not just reactive requests
- Strong background in incident response, threat hunting, and translating threat intelligence into actionable defense mechanisms
- Software development experience, with a strong proficiency in Python for security automation
- Exceptional consultative and communication skills, with the confidence to guide enterprise customers through complex architectural and workflow decisions
- Previous experience with Cortex XSIAM