Security Architect – Cortex XDR
London
Security Architect – Cortex XDR
Location-London Onsite
We are seeking an experienced Security Architect to lead the design, deployment, and optimisation of Palo Alto Cortex XDR across enterprise environments. The role requires strong SIEM/SOAR expertise, security automation experience, and hands-on integration with platforms such as Splunk, Microsoft Sentinel, and IBM QRadar.
Key Responsibilities:
*
Architect and implement Cortex XDR across endpoints, servers, and cloud workloads
*
Define detection, prevention, and response standards aligned to MITRE ATT&CK
*
Lead XDR onboarding, optimisation, and roadmap planning
*
Design and deploy automation workflows; integrate with Cortex XSOAR
*
Build automated playbooks for alert triage, containment, and remediation
*
Integrate XDR with SIEM platforms for centralized monitoring and reporting
*
Lead threat hunting, advanced detection use cases, and SOC modernization initiatives