Job Summary:
This role will be supporting our banking client’s AI-Ready Cyber Resilience program by enhancing threat detection, response automation, and SOC efficiency. This role sits at the intersection of threat response, detection engineering, and automation, ensuring high-fidelity alerts, reduced false positives, and scalable response capabilities using Palo Alto XSIAM/XSOAR. Top 3 Priorities (First 90 Days):
Design and deploy XSOAR/XSIAM playbooks aligned to CTR use cases
Improve detection quality and alert fidelity through tuning and AI-assisted logic
Automate BAU SOC processes (triage, enrichment, containment) to reduce manual workload
Required Skills (Must-Haves)
Senior level (10+ years) of hands-on experience with Palo Alto Cortex XSOAR and/or XSIAM
Playbook design, automation, integrations
Strong understanding of:
SOC operations and workflows
Detection engineering principles
Incident response lifecycle
Experience with:
Alert tuning and false positive reduction
Automation of triage, enrichment, and response actions
Experience in financial services / regulated environments
Working knowledge of MITRE ATT&CK framework
Experience translating operational gaps into detection and automation use cases
Ability to test, validate, and document detections and playbooks
Nice-to-Have Skills
Experience with AI-assisted detection or behavioral analytics (XSIAM context)
Background in threat hunting or advanced threat detection
Exposure to EDR/XDR technologies
Light scripting experience (Python within SOAR environments)
