Palo Alto Networks - Santa Clara, CA
posted about 2 months ago
At Palo Alto Networks, we are committed to being the cybersecurity partner of choice, protecting our digital way of life. As a Staff Security Engineer specializing in SIEM and Data Management, you will play a crucial role in executing security-related data engineering programs and managing our data management and SIEM platforms. This position requires close collaboration with the Security Operations Center (SOC) and cross-functional teams to develop tools and infrastructure that enable the Information Security team to effectively prevent, detect, contain, and manage risks within the Palo Alto Networks Enterprise environment. In this fast-paced, post-startup environment, you will leverage your extensive background in managing and engineering SIEM solutions. Your responsibilities will include the design, implementation, and maintenance of all aspects of our SIEMs and their components. You will be expected to implement and manage log collection and storage solutions across various platforms, ensuring compliance with industry regulations and organizational policies. Additionally, you will review and optimize log retention policies to balance performance and compliance. Your role will also involve designing, deploying, and maintaining the organization's SIEM platforms to ensure effective monitoring and detection of potential security threats. You will develop and fine-tune SIEM rules, alerts, and dashboards to detect suspicious activities while integrating new data sources into the SIEM platform. Analyzing log and event data from multiple sources to identify patterns and potential security incidents will be a key part of your responsibilities, along with collaborating with the incident response team to investigate and mitigate security incidents. As a member of our diverse Information Security team, you will have the opportunity to mentor junior analysts, conduct training sessions on SIEM best practices, and ensure compliance with relevant industry standards. Your experience and insights will contribute to the continuous improvement of our security monitoring capabilities, making a significant impact across the organization.