ZipRecruiter

Log In

2

Remote Xsoar Engineer Jobs (NOW HIRING)

Secur-Serv

Security Automation Engineer

Fort Worth, TX · On-site +1

This is a remote, work-from-home position, and all qualified candidates are encouraged to apply in ... Lead Cortex XSOAR technical implementation/operations in a customer environment * Interact with ...

Ascend Learning

Senior Security Engineer

Leawood, KS · On-site +1

$111K - $152K/yr

Headquartered in Burlington, MA, with additional office locations and hybrid and remote workers in ... SecOps, Cortex XSOAR, TORQ, CrowdStrike Falcon, SentinelOne, etc.). * Demonstrated success ...

Branch

Corporate Security Engineer

... remote, fintech workforce. In this role, you will operate and continuously mature our core ... XSOAR) - alert enrichment, user notifications, evidence collection, and offboarding checks.

Yale University

Senior SOC/XSIAM Architect

Albany, NY · On-site +1

Remote Duration: Long Term We are seeking a senior SOC/SIEM/SOAR Consultant Architect to lead the ... This engagement suits seasoned SOC practitioners with hands-on XSIAM or XSOAR expertise in MSSP and ...

SpyCloud

Technical Account Manager (TAM)

Austin, TX · On-site +1

$96K - $125K/yr

Hands-on experience with programming/scripting languages and their usage with APIs. * Cybersecurity ... Experience with either Active Directory, Entra ID, Splunk, XSOar, Sentinel, SOAR/SIEM Base Salary ...

next page

Showing results 1-20

All JobsRemote Xsoar Engineer Jobs

Remote Xsoar Engineer information

See salary details

$38K

$115.9K

$191.5K

How much do remote xsoar engineer jobs pay per year?

As of Jun 21, 2026, the average yearly pay for remote xsoar engineer in the United States is $115,864.00, according to ZipRecruiter salary data. Most workers in this role earn between $83,000.00 and $151,500.00 per year, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive as a Remote XSOAR Engineer, and why are they important?

To thrive as a Remote XSOAR Engineer, you need a solid background in cybersecurity, experience with incident response, and proficiency in programming languages like Python, often supported by a relevant degree or certifications such as CISSP or Palo Alto Networks certifications. Familiarity with SOAR platforms, particularly Palo Alto Cortex XSOAR, as well as SIEM tools and automation scripting, is essential. Strong problem-solving skills, attention to detail, and effective remote communication abilities distinguish top performers in this role. These skills are crucial for efficiently automating security operations, collaborating across distributed teams, and ensuring quick, coordinated responses to security incidents.

What are some common challenges faced by Remote XSOAR Engineers when integrating security tools across different client environments?

Remote XSOAR Engineers often encounter challenges related to the variety and complexity of client environments, such as differing network architectures, security policies, and legacy systems. Ensuring seamless integration between XSOAR and existing security tools requires strong troubleshooting skills and adaptability. Additionally, remote collaboration with on-site teams can present communication hurdles, making clear documentation and proactive engagement essential for successful deployments. Staying updated on XSOAR platform updates and maintaining secure remote access protocols is also critical.

What is the difference between Remote Xsoar Engineer vs XSOAR Analyst?

AspectRemote Xsoar EngineerXSOAR Analyst
CredentialsSecurity certifications, technical degreesSecurity certifications, analytical skills
Work EnvironmentRemote, technical teams, cybersecurity projectsRemote or on-site, security operations centers
Industry UsageCybersecurity, threat managementSecurity operations, incident response

Remote Xsoar Engineers focus on developing and maintaining security automation using Cortex XSOAR, requiring technical skills and certifications. XSOAR Analysts primarily monitor security alerts, analyze threats, and respond to incidents. Both roles are vital in cybersecurity but differ in technical depth and daily responsibilities.

What are Remote XSOAR Engineers?

Remote XSOAR Engineers are cybersecurity professionals who specialize in managing, developing, and maintaining security orchestration, automation, and response (SOAR) solutions using platforms like Palo Alto Networks Cortex XSOAR. They work remotely to automate incident response workflows, integrate security tools, and help organizations respond to threats more efficiently. Their responsibilities often include creating playbooks, customizing integrations, and collaborating with security teams to streamline processes. By working remotely, they can support organizations' security operations from anywhere, providing flexibility and access to global talent.

Security Cortex XSOAR Engineer

CREATIVE GLOBAL CONSULTING

Remote

Full-time

Posted 20 days ago

Job description

Security Cortex XSOAR Engineer
Client: TriWest
POP: 12+ months
Location: Remote
US Citizen
SCOPE
As a SOAR Security Engineer, you will be responsible for assisting with the deployment, and maintenance of the Security Orchestration Automation & Response (SOAR) solution within a 24x7x365 federal security operation. The SOAR Engineer will analyze our client's business requirements / systems /networks and translate those specifications into a SOAR design that provides an efficient and effective SOAR solution within a federal cloud environment.
REQUIRED SKILLS
  • Minimum Bachelors degree in Cyber, Computer Science, or related field +7 Years relevant working experience.
  • DoD Approved 8570 certification REQUIRED such as: CompTIA Security+ , CEH, CFR, CCNA Cyber Ops, CCNA-Security, CYSA+**, GCIA, GCIH, GICSP.
  • 7+ years of relevant professional experience
  • 4+ years of SOAR Engineering / administration experience.
  • 2+ years of management of SOAR within a Federal environment.
  • Understanding of enterprise environments, specifically cloud-based and hybrid cloud environments. • Knowledge of security frameworks including such as MITRE ATT&CK, OWASP, & NIST.
  • Hands-on troubleshooting, analysis, and technical expertise to resolve incidents and/or service requests.
  • Strong written communication skills and the ability to articulate technical security analysis to a non-technical audience.
  • Understanding of possible attack activities such as network reconnaissance probing/ scanning, DDOS, malicious code activity, etc.
  • Able to troubleshoot and be a problem solver with analytical proficiency in Linux.
  • Strong scripting skills (JSPythonPowershell).
  • Attention to details, fast learner and excellent communication skills. Be able to communicate technical information in a simplified, easy to understand manner.
  • Cybersecurity knowledge and experience - advantage.
  • Provide Technical Support to top-tier customers.
  • Provide tailored troubleshooting, configuration guidance, and best practices.
  • Manage support cases to ensure issues are recorded, tracked, and resolved with timely follow-ups with thorough documentation of all the troubleshooting steps in the ticketing system.
  • Conduct multi-vendor troubleshooting on complex customer engagements and build positive customer experience by working closely with Account, Sales, and Marketing teams.
  • Utilize fault isolation and root cause analysis skills to provide post-sales technical support, configuration, troubleshooting, and standard methodologies to customers.

PREFERRED SKILLS
  • Knowledge of Federal Security Standards such as NIST and DoD.
  • Understanding and experience with FedRAMP Cloud Security Requirements.

TASKS
  • Assist with Configuration, Deployment, and Maintenance of SOAR technologies within a federal cloud environment.
  • Aid in the translation of client requirements into technical design / implementation.
  • Configuration of SOAR in accordance with DISA STIG and CIS Benchmark requirements.
  • Recommend system and process improvements to continually enhance security operations.
  • Assist security incident responders during system investigations.
  • Development of Dashboards and Reports as they relate to SOAR.
  • Responding to tickets related to SOAR configuration changes and troubleshooting.

Apply