Security Architect in City of London

New Today

Energy Jobline is the largest and fastest growing global Energy Job Board and Energy Hub. We have an audience reach of over 7 million energy professionals, 400,000+ monthly advertised global energy and engineering jobs, and work with the leading energy companies worldwide.
We focus on the Oil & Gas, Renewables, Engineering, Power, and Nuclear markets as well as emerging technologies in EV, Battery, and Fusion. We are committed to ensuring that we offer the most exciting career opportunities from around the world for our jobseekers.
Job Description
We are seeking an experienced Security Architect to lead the design, deployment, and optimization of Palo Alto Cortex XDR across enterprise environments. The role requires deep expertise in SIEM and SOAR Platform, strong exposure to security automation, and hands-on experience integrating with SIEM platforms for centralized monitoring and incident response.
The architect will drive advanced threat detection, automated response use cases, and SOC modernization initiatives while aligning security operations with best practices and zero-trust principles.
Key Responsibilities
XDR Architecture & Strategy
Design and own the Cortex XDR architecture across endpoints, servers, and cloud workloads Define XDR onboarding strategy for endpoints, network, and cloud telemetry Establish detection, prevention, and response standards aligned with MITRE ATT&CK Lead XDR roadmap, capacity planning, and platform optimization Cortex XDR Implementation & Operations Architect and deploy Palo Alto Cortex XDR: Endpoint protection, behavioral analytics, and threat prevention Incident correlation and root cause analysis Tune detection policies, alert thresholds, and prevention profiles Oversee agent deployment, upgrades, and performance optimization Automation & SOAR Design and implement security automation and response workflows Integrate Cortex XDR with SOAR platforms (Cortex XSOAR )
Develop automated playbooks for:
Alert triage and enrichment Containment and remediation (endpoint isolation, user disablement, IOC blocking) Leverage APIs, scripting, and integrations to reduce manual SOC effort SIEM Integration & Monitoring Integrate Cortex XDR with SIEM platforms (Splunk, Sentinel, QRadar, etc.) Design log ingestion, normalization, and correlation use cases Build dashboards and alerts for SOC visibility and executive reporting Optimize signal-to-noise ratio across SIEM and XDR platforms Threat Detection & Incident Response Define and validate advanced detection use cases Lead threat hunting initiatives using XDR and SIEM telemetry Support incident response investigations and post-incident reviews Continuously improve detections based on emerging threats
If you are interested in applying for this job please press the Apply Button and follow the application process. Energy Jobline wishes you the very best of luck in your next career move.
Apply
Location:
City Of London
Job Type:
FullTime
Category:
Security, Security Architect, Architect

We found some similar jobs based on your search