facebook tracking

XSOAR Palo Alto

Our customer is counting on you to perform this work and train their staff. And while experience on Cortex XSOAR platform is desired, even more important is having a solid foundation in security ops.

Be part of the SOAR DevOps team which manages and architects SOAR solutions for our customers. Our team focus working on the most advanced SOAR platform, covering more use cases and more automations as well as creating integrations to 3rd party products, and expanding the threat intelligence capabilities of XSOAR.

Our customer is counting on you to perform this work and train their staff. And while experience on Cortex XSOAR platform is desired, even more important is having a solid foundation in security operations and capabilities. 


  • Assist customers with their Incident Response efforts leveraging Palo Alto Networks Cortex XSOAR / Demisto or equivalent SOAR Product for Security Orchestration Automation and Response.
  • Learn & understand the customer's business requirements and the threat landscape that is most applicable to their industry's vertical sector.
  • Ability to refine and translate complex requirements and execute best practice solutions
  • Ability to create Playbook and Uses Cases for SOC/SOAR investigation and integrated into Cortex XSOAR Solutions.
  • Be a security expert for further enhancement of the security posture provided to the customer and deliver support when appropriate.
  • Lead SOAR technical implementation/operations in a customer environment.
  • Interact with Security and IT technologies relating to customer environment.
  • Ability to communicate effectively in crisis situations with all levels of an organization from Engineering/Operations to CIO/CISO audiences.
  • Ability to relay highly technical concepts to non-technical audience.
  • Ensure client needs are met and deliverables produced on time according to specified project deliverables and scope.

Required experience

  • Proven automation abilities (preferably with Python).
  • Experience in leading a SOC/SOAR environment and mentoring SOC/SOAR Analyst.
  • Experience in implementing any SOAR Platform in large enterprise networks into customer’s SOC/SOAR, with innovative technical solutions and runbooks.
  • Strong Knowledge in Use Case, Workflows Threat Hunting, DFIR and experience in automating them in a SOC/SOAR environment.
  • Ability to provide complex solutions in customer environments and execute/document said solutions by self or as a team leader.
  • Knowledgeable on Security Technologies – Firewalls, Endpoint prevention, SIEM, Vulnerability management tools both from a business driver and Technical standpoint.
  • Experience with security incident response or SOC operational processes – manual and automated is a plus.
  • Coding experience – ability to develop and maintain scripts in Python and/or JavaScript.
  • Able to troubleshoot and be a problem solver with analytical proficiency in Linux.
  • Communication by API (REST required, Graphql is a plus).
  • Good knowledge of Git, monitoring of projects in Gitlab.
  • CI/CD Methodologies.
  • Solutions (Docker, Ansible, Terraform).
  • Ability to lead a project team.
  • Attention to details, fast learner and excellent communication skills.

Desirable requirements

  • Previous experiences - Python, Splunk, QRAdar, Arcsight, Seimplify, ServiceNow, Phantom, Demisto, IBM Resilient
  • Demonstrated project leadership skill
  • Secure coding techniques is a plus
  • Possess one of more of the following industry certifications: CISSP, GCIA, GCIH, GCFA, PCNSE.

Summary of mandatory requirements

  • Experience: Minimum 8 years of relevant experience in domain.
  • Languages: English 
  • Start: This is a freelance position. We are looking for freelancers that are able to start ASAP.
  • Duration: September 2021 (+ possible extension) 


Paris (France) - Full remote work for the moment but then on-site work will be required.

We usually respond within 2 hours

Or, know someone who would be a perfect fit? Let them know!

Job categories

Paris, France

75004 Paris Directions View page

Why work with us?

Recruit4.Work was built on four core values, and they are as relevant today as the day we began: honesty and clarity, proactivity, long-term relationships, and knowledge.

  • Honesty and clarity

    We ensure these values are the basis of our interaction with everyone; clients, candidates, suppliers and each other.

  • Proactivity

    We are creative and solutions driven and don’t rely on existing methods. We are flexible, open to change and constantly question the status quo

  • Long-term relationships

    We develop relationships with a view to forming successful and sustainable long term partnerships of mutual benefit.

  • Knowledge

    We continually build upon our in-depth understanding of the disciplines and sectors in which we operate.


Recruit4.work will do more than just finding that absolute professional for you. We judge the person also at their personal and contactual abilities.

Will he/she fit within your organisation structure? Is he/she a real team player, will he/she show enough leadership to lead a larger unit, is it a real personality, and will he/she estimate that very special procedures characterizing your organisation?

A company specialized in recruitment and selection will take those aspects seriously in the profile. 

Recruit4.work is such a company.


Applicant tracking system by Teamtailor