Hitachi Vantara Corporation is hiring a Cybersecurity Engineer (SIEM/SOAR)

Hitachi Vantara Corporation is looking for a Cybersecurity Engineer (SIEM/SOAR) to join our security engineering and operations function. This key role focuses on enhancing security detection, automation, and response capabilities using Palo Alto Networks XSIAM to improve SOC efficiency and visibility.

What You'll Do

• Act as the technical Subject Matter Expert for enterprise cybersecurity log data management solutions.
• Implement and configure Palo Alto Networks XSIAM to improve SOC efficiency and visibility.
• Design and manage security automation workflows.
• Integrate and optimize XDR capabilities to support proactive threat detection.
• Set up and maintain SIEM-style log ingestion, correlation rules, and enrichment pipelines.
• Build custom dashboards and reporting tools for real-time security insights.
• Troubleshoot complex issues related to XSIAM, XSOAR, and related integrations.
• Ensure seamless integration with third-party security tools and platforms.
• Provide best-practice guidance and hands-on support to internal teams.
• Maintain accurate documentation of configurations, workflows, and procedures.
• Devise and oversee comprehensive log ingestion strategies for the XSIAM platform.
• Architect and implement sophisticated detection strategies and correlation rules.
• Fine-tune and optimize log sources and correlation rules.
• Identify opportunities to enhance analyst alert handling and response through automation.

What We're Looking For

• 3+ years working with Palo Alto Networks solutions (XSOAR, XSIAM, Cortex XDR).
• Strong understanding of Security Operations, XDR, and SIEM principles.
• Experience implementing and leveraging log data pipeline technologies (e.g., Cribl, Vector, Logstash, Tenzir).
• Proficient in scripting and automation (e.g., Python, PowerShell).
• Solid experience with log analysis, event correlation, and alert tuning.
• Demonstrated experience communicating across levels within an organization.

Nice to Have

• Palo Alto certifications (PCNSE, XSIAM/XSOAR certifications highly preferred).
• Demonstrated experience with cloud service providers (AWS, Azure, GCP).
• Experience translating business requirements into solution requirements.
• Experience preparing and maintaining documentation (architectural diagrams, operating procedures, etc.).
• Experience with similar tools from Sentinel One, Microsoft, Google, Splunk, Elastic or CrowdStrike.
• Exposure to threat hunting methodologies and tools.
• Relevant bachelor's degree or industry-recognized qualifications (CISSP, GIAC, etc.).

Technical Stack

• Palo Alto Networks XSIAM, XSOAR, Cortex XDR
• Cribl, Vector, Logstash, Tenzir
• Python, PowerShell
• AWS, Azure, GCP

Benefits & Compensation

• Industry-leading benefits
• Support for holistic health and wellbeing
• Flexible work arrangements (role and location dependent)

We’re proud to say we’re an equal opportunity employer and welcome all applicants for employment without attention to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran, age, disability status or any other protected characteristic.