NavitasPartners logo

Cyber Security Engineer / SOC Analyst (Palo Alto, Splunk & SIEM)

NavitasPartners
4 days ago
Remote
Automation

Job Title: Cyber Security Engineer / SOC Analyst (Palo Alto, Splunk & SIEM)

Location: Remote (Up to 25% travel to client sites as needed)

Job Summary

"Navitas Partners, LLC" is seeking a highly motivated Cyber Security Engineer / SOC Analyst with strong hands-on expertise in Palo Alto firewalls, Splunk, and SIEM platforms. This role is responsible for monitoring, detecting, analyzing, and responding to security threats while ensuring the overall protection and resilience of enterprise systems and networks.

Key Responsibilities

  • Monitor, analyze, and respond to security alerts using SIEM tools (preferably Splunk)
  • Configure, manage, and troubleshoot Palo Alto Networks (PAN-OS) firewalls
  • Perform log ingestion, analysis, and correlation using Splunk
  • Develop and maintain SIEM use cases, correlation rules, dashboards, and alerts
  • Investigate security incidents and perform root cause analysis
  • Collaborate with cross-functional teams to remediate vulnerabilities and security issues
  • Conduct proactive threat hunting and continuous security monitoring
  • Maintain accurate documentation for incidents, procedures, and compliance requirements
  • Support audits and ensure adherence to organizational security policies and standards

Required Skills & Experience

  • 3–8 years of experience in Cyber Security, SOC, or SIEM environments
  • Strong hands-on experience with:
    • Palo Alto Networks Firewalls (policy management, NAT, VPNs)
    • Splunk (log ingestion, SPL queries, dashboards)
    • SIEM platforms (e.g., Splunk, QRadar, ArcSight)
  • Solid understanding of:
    • Network protocols (TCP/IP, DNS, HTTP, SSL)
    • Security frameworks (NIST, ISO 27001, MITRE ATT&CK)
  • Experience with incident response and threat intelligence
  • Familiarity with endpoint security tools and IDS/IPS technologies

Preferred Qualifications

  • Relevant certifications such as:
    • PCNSE (Palo Alto Certified Network Security Engineer)
    • Splunk Certified Power User or Administrator
    • CEH, CISSP, or Security+
  • Experience with SOAR tools (e.g., Cortex XSOAR, Splunk Phantom)
  • Exposure to cloud security (AWS or Azure environments)
  • Basic scripting knowledge (Python, PowerShell)

Nice to Have

  • Experience with Palo Alto Networks Prisma SASE solutions
  • Understanding of SASE architecture for hybrid workforce environments
  • Exposure to Prisma Access, Prisma SD-WAN, and ADEM
  • SASE-related certifications or hands-on experience