XSOAR Principal Consultant - Cyber Security Automation

Job Description

We are seeking a highly skilled XSOAR Principal Consultant with strong expertise in cybersecurity automation, SOAR platforms, and modern DevSecOps practices. The ideal candidate will have hands-on experience in Python/C++ programming, XSOAR/Demisto development, and enterprise security integrations across cloud and on-prem environments.

Key Responsibilities

• Lead the design, development, and deployment of Palo Alto XSOAR/Demisto playbooks to automate security operations and incident response.
• Collaborate with security operations teams to integrate SIEM, threat intelligence, O365 security, and Microsoft Azure services with XSOAR.
• Build and maintain reusable automation frameworks, connectors, and integrations for SOAR.
• Drive DevSecOps adoption with secure automation in CI/CD pipelines.
• Implement and manage infrastructure as code (IaC) using Terraform and Kubernetes for scalable security automation.
• Work closely with clients and internal teams to provide security automation best practices, troubleshooting, and enhancements.
• Mentor junior team members and ensure adherence to security standards and compliance frameworks.
  
  

Required Skills

• Strong programming skills in Python or C++.
• 4+ years of hands-on experience in XSOAR/Demisto implementation and development.
• Proven expertise in cybersecurity operations, incident response, and automation.
• Good experience with Microsoft Azure, O365 security services, and SIEM tools (Splunk, QRadar, etc.).
• Familiarity with Terraform, Kubernetes, and CI/CD pipelines.
• Strong problem-solving, analytical thinking, and communication skills.
  
  

Nice To Have

• Relevant security certifications (e.g., Palo Alto XSOAR, Azure Security Engineer, CISSP, CEH).
• Exposure to other SOAR platforms (Splunk SOAR, IBM Resilient, etc.).
• Knowledge of cloud security frameworks and compliance standards.
  
  

(ref:hirist.tech)