Palo Alto XSIAM Security Analyst

Proficient in managing Palo Alto XSIAM platform alerts, incidents, and automation workflows.

Strong understanding of security event correlation, alert triage, and incident escalation.

12 months

Hyderabad or Mumbai

Remote working

3 x headcount (2 x Level 2 & 1 x Level 3)

Experience with integrating XSIAM with other security tools (SIEM, SOAR, EDR, etc.).

Knowledge of threat intelligence feeds, data sources, and automation scripting (Python, PowerShell, etc.).

Familiarity with incident response processes, including containment, eradication, and recovery.

Experience & Qualifications:

3+ years of experience in SOC operations or security monitoring.

Hands-on experience with Palo Alto XSIAM or similar SOAR/SIEM platforms.

Previous involvement in managing security alerts, performing initial investigations, and escalating incidents.

Client references from similar deployments are a plus.

Certifications & Qualifications:

• Palo Alto Networks Certified Cybersecurity Associate (PCSA) or equivalent.
• Certified SOC Analyst (CSA) or equivalent cybersecurity certifications (e.g., CompTIA Security+, GIAC Security Essentials).

Roles & Responsibilities:

• Monitor and manage alerts generated by XSIAM in real-time.
• Perform initial incident triage, validation, and categorization.
• Execute predefined automation playbooks for common alerts.
• Escalate complex incidents to Level 3 analysts with detailed context.
• Document incident details and actions taken in ticketing systems.
• Support the transition and knowledge sharing with Level 3 analysts.
• Strong communication skills for clear incident reporting.
• Ability to work effectively in a global, 24/7 environment.
• Team-oriented with a proactive approach to problem-solving.
• Flexibility to adapt to shift rotations and peak demand periods.
• Location & Flexibility:

Open to remote work within secure, compliant environments.