Sr. Technical Support Engineer, Cortex XPANSE
Bengaluru, India
Palo Alto Networks
Implement Zero Trust, Secure your Network, Cloud workloads, Hybrid Workforce, Leverage Threat Intelligence & Security Consulting. Cybersecurity Services & Education for CISO’s, Head of Infrastructure, Network Security Engineers, Cloud...Company Description
Our Mission
At Palo Alto Networks® everything starts and ends with our mission:
Being the cybersecurity partner of choice, protecting our digital way of life.
Our vision is a world where each day is safer and more secure than the one before. We are a company built on the foundation of challenging and disrupting the way things are done, and we’re looking for innovators who are as committed to shaping the future of cybersecurity as we are.
Our Approach to Work
We lead with flexibility and choice in all of our people programs. We have disrupted the traditional view that all employees have the same needs and wants. We offer personalisation and offer our employees the opportunity to choose what works best for them as often as possible - from your wellbeing support to your growth and development, and beyond!
At Palo Alto Networks, we believe in the power of collaboration and value in-person interactions. This is why our employees generally work from the office three days per week, leaving two days for choice and flexibility to work where you feel most effective. This setup fosters casual conversations, problem-solving, and trusted relationships. While details may evolve, our goal is to create an environment where innovation thrives, with office-based teams coming together three days a week to collaborate and thrive, together!
Job Description
Your Career
As a Senior Technical Support Engineer specializing in Cortex Xpanse (ASM ) , you will play a critical role in managing all internal and external internet-connected assets for potential attack vectors and exposures, and ensuring our clients' security infrastructures are robust and responsive.
Your Impact
Provide advanced technical support for cybersecurity automation tools, including SIEM, SOAR, and EDR solutions.
Diagnose and resolve complex technical issues related to the integration of SIEM solutions with other security tools and data sources.
Analyze and respond to security threats from various sources such as Firewalls, IDS/IPS, Antivirus, and EDR systems.
Develop and maintain scripts using Python, PowerShell, and Linux CLI commands to automate security processes and enhance system integrations
Collaborate with cross-functional teams to troubleshoot integration issues and improve the overall security architecture
Qualifications
Your Experience
BE/B.Tech engineering, equivalent technical degree or equivalent military experience required
Minimum of 3 to 5 years of experience in technical support or a similar role, with exposure on CyberSecurity Technologies, Automation and Architecture such as SIEM, SOAR, Threat Detection and Attack Surface management
Proficiency in scripting languages (Python, PowerShell, Linux CLI).
Strong understanding of network protocols, firewalls, and security architectures.
In Depth understanding of Active Response and Attack Surface Management
Understanding data models, APIs, and user interfaces for user-facing features
Brute-Force attack, Vulnerability Management Across the Cyber Attack Surface
Overview and better working knowledge of EDR, MDM, CMDB, Cloud Assets, Vulnerability Assessment Systems and Ordr Discovery Engine
Excellent problem-solving skills, with the ability to diagnose and resolve complex technical issue
Exceptional communication skills, both written and verbal, with a customer-centric approach
Ability to work independently and as part of a team in a fast-paced, dynamic environment
Experience in incident response and threat detection using SIEM tools.
Ability to troubleshoot integration issues between SIEM and other security tools.
Nice-to-Have
Experience with design, build and optimize data models and queries for speed and scale, using data storage technologies like MySQL and BigQuery
Design and build business logic and API endpoints using Python and Flask
Building user interfaces using Angular and React
Experience with dynamic playbooks and automated workflows in SOAR.
Understanding of attack visualization and automated alert management.
Security certifications (CISSP, CISM, CompTIA Security+, CEH).
Additional Information
The Team
Our Global Customer Support team is critical to our success and mission. As part of this team, you enable customer success by providing support to clients after they have purchased our products. Our dedication to our customers doesn’t stop once they sign – it evolves. As threats and technology change, we stay in step to accomplish our mission.
You’ll be involved in implementing new products, transitioning from old products to new, and will fix integrations and critical issues as they are raised – in fact, you’ll seek them out to ensure our clients are safely supported. We fix and identify technical problems, with a pointed focus of providing the best customer support in the industry.
Our Commitment
We’re problem solvers that take risks and challenge cybersecurity’s status quo. It’s simple: we can’t accomplish our mission without diverse teams innovating, together.
We are committed to providing reasonable accommodations for all qualified individuals with a disability. If you require assistance or accommodation due to a disability or special need, please contact us at accommodations@paloaltonetworks.com.
Palo Alto Networks is an equal opportunity employer. We celebrate diversity in our workplace, and all qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or other legally protected characteristics.
All your information will be kept confidential according to EEO guidelines.
Covid-19 Vaccination Information for Palo Alto Networks Jobs
- Vaccine requirements and disclosure obligations vary by country.
- Unless applicable law requires otherwise, you must be vaccinated for COVID or qualify for a reasonable accommodation if:
- The job requires accessing a company worksite
- The job requires in-person customer contact and the customer has implemented such requirements
- You choose to access a Palo Alto Networks worksite
- If you have questions about the vaccine requirements of this particular position based on your location or job requirements, please inquire with the recruiter.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Antivirus APIs ASM Automation CEH CISM CISSP Cloud CompTIA EDR Firewalls Flask IDS Incident response IPS Linux MySQL PowerShell Python Scripting SIEM SOAR Threat detection Vulnerability management
Perks/benefits: Career development Medical leave
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.