Senior SIEM Consultant - Palo Alto XSIAM/XSOAR/XDR

We are looking for an experienced SIEM Consultant for a stable international IT organisation in the logistics sector. You will join a security engineering team that is building and enhancing a platform based on Palo Alto XSIAM / XSOAR / XDR with a strong focus on IPv6 adoption and automation around security monitoring.

Responsibilities

• Implementation, configuration and lifecycle management of Palo Alto XSIAM / XSOAR / XDR
• Design and maintenance of SIEM detections, parsers, correlation rules, dashboards and reports
• Development of Python scripts and tools for automation and integration of security processes
• Work with Docker and MySQL (storing and processing data from security tools)
• Integration of data sources and development of REST API connectors (F5 BigIP, Qualys, Nmap, cloud services)
• Analysis of security events, optimisation of detection rules and support of incident response processes
• Cooperation with international security teams and preparation of technical documentation in English

Requirements

• 2-3+ years of hands-on experience with SIEM platforms (Palo Alto, Splunk, QRadar, Sentinel or similar)
• Very good knowledge of Python and experience with scripting for automation/integration
• Experience with Docker, MySQL and basic administration of Linux
• Understanding of network and security concepts, including IPv6
• Experience with XDR / SOAR tools is a strong advantage (ideally Palo Alto)
• Advantage: experience with Poetry, Secure Web Gateway, cloud security (Azure/AWS)
• Analytical thinking, ability to work independently and in a distributed team
• English B2+ - daily communication in an international environment