Automation Developer with Cortex XSOAR

Title: Automation Developer with Cortex XSOARLocation: Remote. Candidates must be willing to travel to the client site (Abbott Park, IL) on an occasional basis; the client will pay expenses. Job DescriptionWe are looking for a talented and experienced automation developer who can leverage XSOAR, Python, and Splunk to create, maintain, and enhance our cybersecurity solutions. You will be working with a team of analysts, engineers, and architects to design, develop, and deploy automation workflows, scripts, and dashboards that improve our efficiency, effectiveness, and security posture. ResponsibilitiesCollaborate with stakeholders to understand, analyze, and refine Cortex XSOAR automation requirements specifications.Pull AD data into XSOAR playbook and support process automation through complex calls into Splunk tables.Integrate Splunk with XSOAR for efficiency, i.e., reduce manual steps/workflows.Lead Knowledge Transfer sessions on general XSOAR development best practices. QualificationsBachelor's degree in Computer Science/Cybersecurity, Engineering, or related field, or equivalent work experienceAt least 3 years of experience in automation development using XSOAR, Python, and SplunkStrong knowledge of cybersecurity concepts, principles, and practicesProficient in Palo Alto Cortex XSOAR platform, Python programming, and Splunk query languageFamiliar with RESTful APIs, JSON, XML, and other data formatsExperience with version control, testing, and debugging tools.Excellent communication, collaboration, and problem-solving skillsCertifications in XSOAR, Python, and Splunk are preferred. Brief Scope of Work:Utilizing Python or other coding languages to pull data from Active Directory into XSOAR playbooks.Related to a, utilizing XSOAR to utilize complex calls into Splunk tables for data enrichment to support process automationIntegrating Splunk into XSOAR by deduplicating XSOAR raised alerts within a 72-hour periodXSOAR threat intel enrichments to reduce manual workflows and increase analyst bandwidthMentoring/shadowing engineers/staff Abbott on general XSOAR development best practices Expected Deliverables:All source code for the in-scope activities as referenced in 2.1 configured for operation in Abbotts XSOAR development environmentDocumentation, including step by step screenshots, to support internal processes which utilize the product of the XSOAR development work above

Key Skills

• Python