[Remote] Sr Content Engineer (XSIAM/XSOAR)
Note: The job is a remote job and is open to candidates in USA. Dice is seeking a Sr Content Engineer specializing in XSIAM/XSOAR to support their operations. The role involves sustaining current operations, managing requests, and enhancing data source parsing rules and XDM data models.
Responsibilities
- Sustain current operations within XSOAR/XSIAM by fielding tunning, bug requests, enhancements to playbooks, automations, scripts, and correlation rules
- All intakes receive from ServiceNow requests and managed in a JIRA backlog/Kanban board
- Additionally, while working sustainment update data source parsing rules and create XDM data models for any data source that does not currently have a data model
- Directly augment the 3100hrs of hands-on keyboard work required to refactor all content within XSOAR and migrate it to XSIAM where appropriate
- Partner with the internal project technical execution team of 6 FTEs to move enrichment, scripts, lists, playbooks, automations, and other orchestration content
Skills
- Direct exposure in Cortex XSIAM and XSOAR building and sustaining content like correlations rules, reports, dashboards, scripts (python), playbooks, automations, automation rules
- Parsing using regex
- XDM data models
- Direct exposure building and deploying automation use cases within Cortex XSIAM or XSOAR specifically
- Ability to code in python inside Cortex XSIAM/XSOAR
Company Overview
Company H1B Sponsorship