Principal Palo Alto Cortex XSIAM Specialist
Description:
Want to be a part of our team?We are seeking a highly skilled and experienced Senior Principal Operations Specialist to join our team and lead the implementation and management of Palo Alto Networks’ Cortex XSIAM platform. The ideal candidate will have a deep understanding of security operations, threat detection, and response capabilities, as well as experience with XDR and SIEM solutions.
Working at NTT
Key Roles and Responsibilities:
Implement Cortex XSIAM: Deploy and configure the Cortex XSIAM platform to serve as the central hub of SOC activity, replacing traditional SIEM solutions.
Manage Security Operations: Utilize XSIAM’s capabilities such as data centralization, intelligent stitching, and analytics-based detection to drive security operations.
Automation and Analytics: Embed automation and analytics to reduce SOC costs and make SecOps processes self-sustainable.
Incident Management: Oversee incident management, ensuring that routine incidents are recognized, handled, and closed efficiently.
Serve as SME and escalation point for operational teams.
Academic Qualifications and Certifications and Experience
A bachelor’s degree in computer science, Information Technology, Cybersecurity, or a related field.
Advanced degrees or certifications such as CISSP, CISM, or CompTIA Security+ would be a plus.
Candidates must hold a Palo Alto Networks Certified Security Automation Engineer (PCSAE) certification.
Experience: At least 10 years of experience in cybersecurity, with a focus on threat detection, incident response, and security operations. Experience in managing Palo Alto Cortex XDR and XSIAM or other SIEM tools is a must.
Palo Alto Cortex XDR and XSIAM Expertise: Deep understanding of Palo Alto Cortex XDR and XSIAM capabilities, including data connectors, analytics rules, workbooks, hunting queries, and playbooks. Experience in deploying, configuring, and managing Palo Alto Cortex XDR and XSIAM in a large enterprise environment.
Cybersecurity Knowledge: Strong knowledge of cybersecurity principles, IT governance, and regulatory and legal requirements related to cybersecurity.
Technical Skills: Proficiency in scripting languages such as PowerShell, KQL or Python. Familiarity with cloud platforms, particularly Microsoft Azure, is essential.
Soft Skills:
Excellent problem-solving skills
Ability to work under pressure
Strong communication skills to effectively collaborate with other teams and explain complex security concepts to non-technical stakeholders.
Skills SummaryInformation Security Compliance, Information Security Engineering, Information Security Incident Management, Information Security Management, Information Security Services, Penetration Testing, Security Controls, Security Vulnerability Assessments
What will make you a good fit for the role?
Workplace type: Hybrid Working
Equal Opportunity Employer
NTT is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, color, sex, religion, national origin, disability, pregnancy, marital status, sexual orientation, gender reassignment, veteran status, or other protected category
R-113593