Principal Consultant – Soc Transformation & Xsiam Deployment jobs at Palo Alto in Japan, Chiyoda

Being the cybersecurity partner of choice, protecting our digital way of life.

Your Career

As a SIEM Engineer for Cortex XSIAM, you will play a pivotal role in assisting our customers with seamless log migration and effective detection strategies. Working closely with the technical lead, you will ensure the successful onboarding and ingestion of relevant log sources into XSIAM, adhering to industry best practices and meeting customer-specific requirements. Your responsibilities will also involve devising suitable detection strategies to fortify our customers' defenses against threats, encompassing the design and implementation of correlation rules.

Your Impact

• Collaborate with the technical lead to devise a comprehensive log ingestion strategy
• Contribute to the development of detection strategies based on industry best practices
• Articulate a step-by-step process to ensure the ingestion of high-quality log sources
• Monitor and optimize log sources for optimal performance
• Create meticulous and effective correlation rules
• Fine-tune log sources and correlation rules to enhance system efficiency
• Serve as the subject matter expert (SME) in SIEM, correlation, and log source ingestion
• Serve as a trusted advisor to end customers, offering consultative guidance and expertise in optimizing the utilization of Cortex XSIAM
• Leverage your in-depth knowledge of SIEM and SOC practices to assess customer needs, provide tailored recommendations, and assist in the formulation of effective security strategies
• Collaborate closely with customers to understand their unique challenges and objectives, translating them into actionable steps that enhance their security posture
• Identify opportunities to enhance analyst alert handling through automation
• Foster collaboration with internal and external teams to drive product adoption
• Produce technical documentation detailing SIEM aspects of the engagement
• Occasionally travel to customer meetings and workshops (up to 10% of the time)

Your Experience

• Exceptional written and verbal communication and presentation skills, for both internal and external interactions
• 6+ years of hands-on experience in deploying and integrating SIEM solutions within enterprise to large enterprise-level environments
• Proficiency in coordinating and conducting event collection, log management, event management, compliance automation, and identity monitoring using SIEM platforms
• Ability to conceive and develop correlation and detection rules in SIEM systems to enable effective alerting
• Familiarity with a range of SIEM technologies, such as Splunk and IBM QRadar
• Proven experience in providing consultative services to end customers within the realm of cybersecurity, particularly in SIEM and SOC domains
• Demonstrated ability to comprehend customer requirements, analyze complex security environments, and deliver strategic recommendations that align with their goals
• Strong expertise in Regular Expressions (Regex)
• Skill in understanding logs and locating relevant third-party documentation when required
• Knowledge of generating reports on SIEM status, including metrics like logging source count, log collection rate, and other performance indicators
• Understanding of Security Analysis & Response, encompassing endpoint, network, and cloud-based environments is a plus
• Proficient in comprehending and creating technical design documentation
• 4 years of experience with Security Operations Centers (SOC) tooling and processes
• Relevant bachelor's degree or industry-recognized qualifications (CISSP, GIAC, SIEM Vendor Qualification, etc.), is a plus

All your information will be kept confidential according to EEO guidelines.

Being the cybersecurity partner of choice, protecting our digital way of life.

Your Impact

• サイバーセキュリティの中核であるCortex製品群（EPP、EDR、NDRなどを提供するXDR、SOARを用いたセキュリティ運用の改善、サイバー攻撃や内部不正の脅威を早期に検知するSIEM、攻撃面管理など）において、サイバーセキュリティサービスを担当するセールスエンジニアとしてご活躍いただきます。
• 製品やサービスの紹介、デモ、Cortex製品群のPoC検証を実施する際に、当社サイバーセキュリティ製品の技術的な利点を提示し、さまざまな技術サポートを提供します。
• 顧客の業界に応じた適切なサイバーセキュリティ対策を導くために、技術的なコンサルティングを行います。
• 既存顧客、新規顧客、社内のアカウント営業/SE部門、マーケティング部門、パートナーに対する製品トレーニングなど、セールス有効化活動を行います。
• 営業チームと技術サポートの間のインターフェースとして機能し、顧客の技術的な課題を解決します。
• 当社主催やパートナーとの共同イベントでのウェビナーや製品デモンストレーションなど、プロモーション活動を行います。

Your Experience

【必須条件】

• プリセールスエンジニアとしての提案経験（顧客分析、課題提案、製品・サービス提案）
• 顧客のサイバーセキュリティ対策に関する理解と経験（エンドポイント、ネットワーク、クラウドにおけるサイバーセキュリティ対策のプリセールス経験）
• 日本語：流暢またはネイティブレベル
• 英語：ビジネスレベルでのメール対応、日常会話レベルでの会話力

【歓迎条件（WANT）】

• エンドポイントセキュリティ（EPP、EDR）の経験
• ネットワークセキュリティ（IPS/IDS、NDR、ZTNA）の経験
• クラウドセキュリティ（AWS、GCP、Azure、CSPM、CWPP）の経験
• SIEM、SOAR の経験
• SOC（セキュリティオペレーションセンター）運用に関する知識と経験
• 脆弱性診断サービスなどのセキュリティサービス経験
• マルウェア、エクスプロイト、サンドボックス、スクリプト（Python/OS）、クラウド/仮想化環境に関する知識

【求める人物像】

• スピード感を持ちながら複数のタスクを同時にこなせる方
• 既成概念にとらわれず、新しい挑戦をいとわず、自主的に学び続ける姿勢を持つ方
• 自立して働きつつも、チームプレイを大切にし、同僚を信頼できる方

All your information will be kept confidential according to EEO guidelines.

Being the cybersecurity partner of choice, protecting our digital way of life.

Your Career

As a SIEM Engineer for Cortex XSIAM, you will play a pivotal role in assisting our customers with seamless log migration and effective detection strategies. Working closely with the technical lead, you will ensure the successful onboarding and ingestion of relevant log sources into XSIAM, adhering to industry best practices and meeting customer-specific requirements. Your responsibilities will also involve devising suitable detection strategies to fortify our customers' defenses against threats, encompassing the design and implementation of correlation rules.

Your Impact

• Collaborate with the technical lead to devise a comprehensive log ingestion strategy
• Contribute to the development of detection strategies based on industry best practices
• Articulate a step-by-step process to ensure the ingestion of high-quality log sources
• Monitor and optimize log sources for optimal performance
• Create meticulous and effective correlation rules
• Fine-tune log sources and correlation rules to enhance system efficiency
• Serve as the subject matter expert (SME) in SIEM, correlation, and log source ingestion
• Serve as a trusted advisor to end customers, offering consultative guidance and expertise in optimizing the utilization of Cortex XSIAM
• Leverage your in-depth knowledge of SIEM and SOC practices to assess customer needs, provide tailored recommendations, and assist in the formulation of effective security strategies
• Collaborate closely with customers to understand their unique challenges and objectives, translating them into actionable steps that enhance their security posture
• Identify opportunities to enhance analyst alert handling through automation
• Foster collaboration with internal and external teams to drive product adoption
• Produce technical documentation detailing SIEM aspects of the engagement
• Occasionally travel to customer meetings and workshops (up to 10% of the time)

Your Experience

• Exceptional written and verbal communication and presentation skills, for both internal and external interactions
• 6+ years of hands-on experience in deploying and integrating SIEM solutions within enterprise to large enterprise-level environments
• Proficiency in coordinating and conducting event collection, log management, event management, compliance automation, and identity monitoring using SIEM platforms
• Ability to conceive and develop correlation and detection rules in SIEM systems to enable effective alerting
• Familiarity with a range of SIEM technologies, such as Splunk and IBM QRadar
• Proven experience in providing consultative services to end customers within the realm of cybersecurity, particularly in SIEM and SOC domains
• Demonstrated ability to comprehend customer requirements, analyze complex security environments, and deliver strategic recommendations that align with their goals
• Strong expertise in Regular Expressions (Regex)
• Skill in understanding logs and locating relevant third-party documentation when required
• Knowledge of generating reports on SIEM status, including metrics like logging source count, log collection rate, and other performance indicators
• Understanding of Security Analysis & Response, encompassing endpoint, network, and cloud-based environments is a plus
• Proficient in comprehending and creating technical design documentation
• 4 years of experience with Security Operations Centers (SOC) tooling and processes
• Relevant bachelor's degree or industry-recognized qualifications (CISSP, GIAC, SIEM Vendor Qualification, etc.), is a plus

All your information will be kept confidential according to EEO guidelines.

Being the cybersecurity partner of choice, protecting our digital way of life.

Your Impact

• 営業チームと連携し、担当領域におけるお客様へのソリューション提案を行う
• 現場の技術担当者から経営層まで、あらゆるレベルのお客様に対し、専門家としてプレゼンテーションを実施する
• 当社の価値を最大限に伝えるデモンストレーションを主導し、サポートする
• お客様やパートナーに対し、技術検証プロジェクトを主導し、ベストプラクティスに基づいた技術的な勝利を確実にする
• お客様のセキュリティ体制を強化・簡素化するためのソリューションを設計する
• 高度な設計や主要なユースケースを文書化し、パロアルトネットワークスのソリューションが適切に導入され、価値を提供できるようにする
• 業界のトレンドやセキュリティ環境の変化について議論をリードする
• お客様の要件と当社製品の適合性、および競争優位性を強調して説明する
• ネットワークセキュリティの主要な技術担当者として、RFI/RFPへの対応を支援・調整する
• 適切な導入と価値実現のため、パロアルトネットワークスやパートナーが提供するサービスを推奨する
• 市場における競合製品について的確に説明し、当社のソリューションが最適な選択肢であることを伝える
• 特定分野における高度な専門知識を有し、広範な技術知識を活用する

Your Experience

• Zero Trust、ネットワーキング、ネットワークセキュリティ、SaaSセキュリティ、またはSSE/SASEにおけるプリセールス／セールスエンジニアリングの経験（6年以上）
• L2-L4ネットワーキングの知識（L2スイッチングアーキテクチャ（スパニングツリー、VLAN/トランキング）、IPルーティング（スタティックルート、OSPF、BGP、ルート再配信）、L4ロードバランシングなど）
• 優れたコミュニケーションスキルと問題解決能力
• お客様と協働し、課題解決に取り組む姿勢と積極的な対応能力
• NGFW（次世代ファイアウォール）、ネットワークセキュリティ、SASE、SD-WAN、CASB、プロキシ、DLP、BYODソリューションに関する確かな理解
• オンプレミスおよびクラウドベースのネットワークセキュリティ技術に関する高度な知識
• フィールドセールスのポジションであり、お客様との対面ミーティングのため出張が必要となる場合があります（詳細についてはリクルーターとご相談ください）
• 日本の商習慣を理解し、日本語での流暢なコミュニケーションおよびプレゼンテーションが可能なこと（ネイティブレベル、または日本語能力試験N1以上）。
• 読み書きが可能な英語力。

All your information will be kept confidential according to EEO guidelines.

Being the cybersecurity partner of choice, protecting our digital way of life.

Your Career

As a SIEM Engineer for Cortex XSIAM, you will play a pivotal role in assisting our customers with seamless log migration and effective detection strategies. Working closely with the technical lead, you will ensure the successful onboarding and ingestion of relevant log sources into XSIAM, adhering to industry best practices and meeting customer-specific requirements. Your responsibilities will also involve devising suitable detection strategies to fortify our customers' defenses against threats, encompassing the design and implementation of correlation rules.

Your Impact

• Collaborate with the technical lead to devise a comprehensive log ingestion strategy
• Contribute to the development of detection strategies based on industry best practices
• Articulate a step-by-step process to ensure the ingestion of high-quality log sources
• Monitor and optimize log sources for optimal performance
• Create meticulous and effective correlation rules
• Fine-tune log sources and correlation rules to enhance system efficiency
• Serve as the subject matter expert (SME) in SIEM, correlation, and log source ingestion
• Serve as a trusted advisor to end customers, offering consultative guidance and expertise in optimizing the utilization of Cortex XSIAM
• Leverage your in-depth knowledge of SIEM and SOC practices to assess customer needs, provide tailored recommendations, and assist in the formulation of effective security strategies
• Collaborate closely with customers to understand their unique challenges and objectives, translating them into actionable steps that enhance their security posture
• Identify opportunities to enhance analyst alert handling through automation
• Foster collaboration with internal and external teams to drive product adoption
• Produce technical documentation detailing SIEM aspects of the engagement
• Occasionally travel to customer meetings and workshops (up to 10% of the time)

Your Experience

• Exceptional written and verbal communication and presentation skills, for both internal and external interactions
• 6+ years of hands-on experience in deploying and integrating SIEM solutions within enterprise to large enterprise-level environments
• Proficiency in coordinating and conducting event collection, log management, event management, compliance automation, and identity monitoring using SIEM platforms
• Ability to conceive and develop correlation and detection rules in SIEM systems to enable effective alerting
• Familiarity with a range of SIEM technologies, such as Splunk and IBM QRadar
• Proven experience in providing consultative services to end customers within the realm of cybersecurity, particularly in SIEM and SOC domains
• Demonstrated ability to comprehend customer requirements, analyze complex security environments, and deliver strategic recommendations that align with their goals
• Strong expertise in Regular Expressions (Regex)
• Skill in understanding logs and locating relevant third-party documentation when required
• Knowledge of generating reports on SIEM status, including metrics like logging source count, log collection rate, and other performance indicators
• Understanding of Security Analysis & Response, encompassing endpoint, network, and cloud-based environments is a plus
• Proficient in comprehending and creating technical design documentation
• 4 years of experience with Security Operations Centers (SOC) tooling and processes
• Relevant bachelor's degree or industry-recognized qualifications (CISSP, GIAC, SIEM Vendor Qualification, etc.), is a plus

All your information will be kept confidential according to EEO guidelines.

Being the cybersecurity partner of choice, protecting our digital way of life.

Your Impact

• 営業チームと連携し、担当領域におけるお客様へのソリューション提案を行う
• 現場の技術担当者から経営層まで、あらゆるレベルのお客様に対し、専門家としてプレゼンテーションを実施する
• 当社の価値を最大限に伝えるデモンストレーションを主導し、サポートする
• お客様やパートナーに対し、技術検証プロジェクトを主導し、ベストプラクティスに基づいた技術的な勝利を確実にする
• お客様のセキュリティ体制を強化・簡素化するためのソリューションを設計する
• 高度な設計や主要なユースケースを文書化し、パロアルトネットワークスのソリューションが適切に導入され、価値を提供できるようにする
• 業界のトレンドやセキュリティ環境の変化について議論をリードする
• お客様の要件と当社製品の適合性、および競争優位性を強調して説明する
• ネットワークセキュリティの主要な技術担当者として、RFI/RFPへの対応を支援・調整する
• 適切な導入と価値実現のため、パロアルトネットワークスやパートナーが提供するサービスを推奨する
• 市場における競合製品について的確に説明し、当社のソリューションが最適な選択肢であることを伝える
• 特定分野における高度な専門知識を有し、広範な技術知識を活用する

Your Experience

• CASB、DLPなどのData Security領域、またはSaaSセキュリティ、SSE/SASEにおけるプリセールス／セールスエンジニアリングの経験
• CASBやDLPソリューションを活用した提案、PoC（技術検証）の主導、および設計に関する深い知識と実践的な経験
• Zero Trustアーキテクチャの理解と、その中でのData Securityの役割に関する知見
• NGFW（次世代ファイアウォール）、プロキシ、SD-WANを含む、オンプレミスおよびクラウドベースのネットワークセキュリティ技術に関する確かな理解
• L2-L4ネットワーキング（L2スイッチング、IPルーティングなど）の基礎知識
• 顧客のビジネス課題を解決に導く、優れたコミュニケーション能力と問題解決能力
• 日本語での流暢なコミュニケーションおよびプレゼンテーション能力（ネイティブレベル）
• 読み書きが可能な英語力

All your information will be kept confidential according to EEO guidelines.

Being the cybersecurity partner of choice, protecting our digital way of life.

Your Career

As a SIEM Engineer for Cortex XSIAM, you will play a pivotal role in assisting our customers with seamless log migration and effective detection strategies. Working closely with the technical lead, you will ensure the successful onboarding and ingestion of relevant log sources into XSIAM, adhering to industry best practices and meeting customer-specific requirements. Your responsibilities will also involve devising suitable detection strategies to fortify our customers' defenses against threats, encompassing the design and implementation of correlation rules.

Your Impact

• Collaborate with the technical lead to devise a comprehensive log ingestion strategy
• Contribute to the development of detection strategies based on industry best practices
• Articulate a step-by-step process to ensure the ingestion of high-quality log sources
• Monitor and optimize log sources for optimal performance
• Create meticulous and effective correlation rules
• Fine-tune log sources and correlation rules to enhance system efficiency
• Serve as the subject matter expert (SME) in SIEM, correlation, and log source ingestion
• Serve as a trusted advisor to end customers, offering consultative guidance and expertise in optimizing the utilization of Cortex XSIAM
• Leverage your in-depth knowledge of SIEM and SOC practices to assess customer needs, provide tailored recommendations, and assist in the formulation of effective security strategies
• Collaborate closely with customers to understand their unique challenges and objectives, translating them into actionable steps that enhance their security posture
• Identify opportunities to enhance analyst alert handling through automation
• Foster collaboration with internal and external teams to drive product adoption
• Produce technical documentation detailing SIEM aspects of the engagement
• Occasionally travel to customer meetings and workshops (up to 10% of the time)

Your Experience

• Exceptional written and verbal communication and presentation skills, for both internal and external interactions
• 6+ years of hands-on experience in deploying and integrating SIEM solutions within enterprise to large enterprise-level environments
• Proficiency in coordinating and conducting event collection, log management, event management, compliance automation, and identity monitoring using SIEM platforms
• Ability to conceive and develop correlation and detection rules in SIEM systems to enable effective alerting
• Familiarity with a range of SIEM technologies, such as Splunk and IBM QRadar
• Proven experience in providing consultative services to end customers within the realm of cybersecurity, particularly in SIEM and SOC domains
• Demonstrated ability to comprehend customer requirements, analyze complex security environments, and deliver strategic recommendations that align with their goals
• Strong expertise in Regular Expressions (Regex)
• Skill in understanding logs and locating relevant third-party documentation when required
• Knowledge of generating reports on SIEM status, including metrics like logging source count, log collection rate, and other performance indicators
• Understanding of Security Analysis & Response, encompassing endpoint, network, and cloud-based environments is a plus
• Proficient in comprehending and creating technical design documentation
• 4 years of experience with Security Operations Centers (SOC) tooling and processes
• Relevant bachelor's degree or industry-recognized qualifications (CISSP, GIAC, SIEM Vendor Qualification, etc.), is a plus

All your information will be kept confidential according to EEO guidelines.