Piper Companies is seeking a XSOAR Consultant to support enterprise clients with log migration and advanced detection strategies. This fully remote position involves close collaboration with technical leads to onboard critical log sources, craft effective detection mechanisms, and build robust correlation rules to defend against evolving threats. We’re looking for a seasoned expert in SIEM technologies and log ingestion, with deep experience in detection engineering and security operations.

QUALIFICATIONS

• 6+ years of hands-on experience deploying and integrating SIEM platforms in enterprise settings.
• Proven track record in developing correlation and detection rules.
• Proficiency with tools like Splunk, IBM QRadar, and Cortex XSIAM.
• Strong grasp of log formats and third-party integration documentation.
• Expertise in Regular Expressions and log parsing techniques.
• Familiarity with SIEM performance metrics and reporting.
• Solid understanding of threat detection across endpoint, network, and cloud environments.
• 4+ years working with SOC tools and operational processes.
• Bachelor’s degree in a relevant field or equivalent certifications (e.g., CISSP, GIAC, vendor-specific).
• Ability to interpret and create technical design documentation.
• Excellent communication and presentation skills.
• Fluent in English; multilingual candidates are a plus.

• Partner with technical leads to develop and implement log ingestion frameworks.
• Shape detection strategies aligned with industry standards and client needs.
• Document detailed procedures for integrating high-value log sources.
• Monitor, analyze, and enhance log source performance.
• Design and deploy correlation rules that deliver actionable threat insights.
• Continuously tune log sources and detection logic for precision and efficiency.
• Act as a subject matter expert in SIEM, log ingestion, and correlation rule development.
• Identify automation opportunities to streamline alert triage and response.
• Collaborate with internal teams and client stakeholders to ensure successful solution adoption.
• Produce clear, comprehensive technical documentation for SIEM-related engagements.
• Participate in client workshops and meetings (travel up to 10%).