Sr. Technical Support Engineer, SIEM

Company Description

Our Mission

At Palo Alto Networks® everything starts and ends with our mission:

Being the cybersecurity partner of choice, protecting our digital way of life.

Our vision is a world where each day is safer and more secure than the one before. We are a company built on the foundation of challenging and disrupting the way things are done, and we’re looking for innovators who are as committed to shaping the future of cybersecurity as we are.

Our Approach to Work

We lead with personalization and choice in all of our people programs. We have disrupted the traditional view that all employees have the same needs and wants. We offer our employees the opportunity to choose what works best for them as often as possible - from your wellbeing support to your growth and development, and beyond!

At Palo Alto Networks, we believe in the power of collaboration and value in-person interactions. This is why our employees generally work from the office with some flexibility offered where needed. This setup fosters casual conversations, problem-solving, and trusted relationships. While details may evolve, our goal is to create an environment where innovation thrives, with office-based teams coming together three days a week to collaborate on the industry’s best cybersecurity solutions together!

Job Description

Your Career

As a Senior Technical Support Engineer specializing in SIEM capabilities, you will provide expert support for our SIEM solutions, including the Cortex XSIAM platform. You will work closely with customers to resolve complex technical issues, ensuring their SIEM deployments are optimized and meet their security needs. Your role involves deep technical analysis, troubleshooting, and collaboration with internal teams to enhance product performance and customer satisfaction.

Your Impact

• Offer high-level technical support for SIEM-related issues, managing cases from initial recording to resolution with timely follow-ups
• Conduct in-depth fault isolation and root cause analysis for complex technical issues related to SIEM, log ingestion, and correlation rules
• Author detailed Technical Support Bulletins and contribute to the Knowledge Base with information on SIEM functionalities and troubleshooting
• Work closely with Engineering, Product, and Professional Services teams to influence product improvements and resolve intricate technical problems
• Participate in weekend on-call rotation and provide after-hours support to ensure continuous customer satisfaction

Qualifications

Your Experience

• Understanding of log ingestion, correlation rules, and performance tuning
• Experience with platforms like Cortex XSIAM, Splunk, or IBM QRadar is also highly advantageous
• Analytical troubleshooting skills specific to SIEM issues, including log collection, event management, and compliance automation
• Familiarity with networking concepts and technologies, including IP routing, DNS, and security protocols
• Proficiency in troubleshooting various operating systems (Windows, Linux, macOS) and understanding of their interaction with SIEM platforms
• Basic scripting knowledge (e.g., Python, PowerShell) to automate tasks, troubleshoot playbooks, and extract data from different datasets
• Knowledge of security analysis and response, including endpoint, network, and cloud environments
• Ability to communicate complex technical issues clearly to both technical and non-technical stakeholders
• Experience in creating and reviewing technical design documentation, user guides, and knowledge base articles
• Proven experience in a customer-facing technical support role, preferably with a focus on SIEM or cybersecurity
• Experience working in a collaborative, 24x7 uptime environment with on-call responsibilities
• Knowledge of SIEM tools for parsing, correlation, data modeling, and dashboards - Familiarity with vulnerability management tools and firewalls is beneficial
• Bachelor’s degree in Computer Science, Information Technology, or a related field, or equivalent military experience
• Exceptional problem-solving skills with the ability to address complex issues under pressure
• Comfortable working across diverse cross-functional teams with open communication
• Strong commitment to delivering high-quality customer service and ensuring customer satisfaction
• Relevant industry certifications such as CISSP, GIAC, or SIEM Vendor Qualifications is a plus
• Fundamental understanding of Kubernetes, GCP, and AWS for troubleshooting cloud-based deployments and data extraction is a plus

Additional Information

The Team

Our technical support team is critical to our success and mission. As part of this team, you enable customer success by providing support to clients after they have purchased our products. Our dedication to our customers doesn’t stop once they sign – it evolves. As threats and technology change, we stay in step to accomplish our mission. You’ll be involved in implementing new products, transitioning from old products to new, and will fix integrations and critical issues as they are raised – in fact, you’ll seek them out to ensure our clients are safely supported. We fix and identify technical problems, with a pointed focus of providing the best customer support in the industry.

Our Commitment

We’re trailblazers that dream big, take risks, and challenge cybersecurity’s status quo. It’s simple: we can’t accomplish our mission without diverse teams innovating, together.

We are committed to providing reasonable accommodations for all qualified individuals with a disability. If you require assistance or accommodation due to a disability or special need, please contact us at [email protected].

Palo Alto Networks is an equal opportunity employer. We celebrate diversity in our workplace, and all qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or other legally protected characteristics.

All your information will be kept confidential according to EEO guidelines.

The compensation offered for this position will depend on qualifications, experience, and work location. For candidates who receive an offer at the posted level, the starting base salary (for non-sales roles) or base salary + commission target (for sales/com-missioned roles) is expected to be between $94,200/yr to $152,450/yr. The offered compensation may also include restricted stock units and a bonus. A description of our employee benefits may be found here. 

Is role eligible for Immigration Sponsorship?: Yes