XSOAR Automation Specialist
Charlotte, North Carolina
Job Id:
159656
Job Category:
Job Location:
Charlotte, North Carolina
Security Clearance:
No Clearance
Business Unit:
Piper Companies
Division:
Piper Enterprise Solutions
Position Owner:
Madeline Remington
Piper Companies is seeking a XSOAR Automation Specialist to join a leading global cybersecurity company specializing in providing AI-driven, platform-based security solutions. XSOAR Automation Specialist will serve as the soar SME on the team. This is a hybrid position 4 days on-site in Charlotte, NC.
Responsibilities of the XSOAR Automation Specialist include:
- Develop SIEM log ingestion strategies and onboard high-quality log sources.
- Create, tune, and optimize SIEM correlation and detection rules.
- Perform log source monitoring, troubleshooting, and continuous optimization.
- Identify automation opportunities and build SOAR playbooks leveraging Python.
- Guide customers through secure cloud integrations and operational best practices.
- Train and enable customer teams to successfully operate SIEM/SOAR platforms.
- Produce clear documentation including workflows, detection logic, and configurations.
- Present technical information to both technical and non-technical stakeholders.
Qualifications for the XSOAR Automation Specialist include:
- 6+ years deploying and integrating SIEM platforms in enterprise environments.
- Strong experience with SIEM technologies such as Splunk or IBM QRadar.
- Ability to build detection logic, correlation rules, and log ingestion pipelines.
- Experience with automation platforms, SOAR tools, and Python scripting.
- Background in SOC environments, security analysis, and threat detection.
- Strong communication and documentation skills.
- Familiarity with Linux/Unix, networking, IDS/IPS, and endpoint solutions.
- Preferred certifications: CISSP, GIAC, GCIA, CEH, Security+.
Compensation for the XSOAR Automation Specialist include:
- Salary Range: $135,000 - $145,000
- Comprehensive Benefits: Medical, Dental, Vision, 401K, PTO, Sick Leave if required by law, and Holidays.
This job opens for applications on [2.2.26]. Applications for this job will be accepted for at least 30 days from the posting date.
#LI-MR1 #LI-HYBRID
Keywords: SIEM Engineering, SOAR Automation, XSOAR Playbooks, Log Ingestion, Log Source Onboarding, Detection Engineering, Correlation Rules, SIEM Optimization, Splunk, IBM QRadar, Python Scripting, Automation Development, SOAR Platforms, Threat Detection, Security Analysis, SOC Operations, Cloud Integrations, Cloud Security Best Practices, Linux/Unix, Networking, IDS/IPS, Endpoint Security, Workflow Documentation, Detection Logic Documentation, Technical Communication, Stakeholder Presentations, Enterprise Integrations, Security Monitoring, CISSP, GIAC, GCIA, CEH, Security+, Cybersecurity Engineering, Incident Response Automation, Log Pipeline Troubleshooting, Customer Enablement, Technical Training.