XSOAR Architect (Secret clearance), Ahuntsic North

6 month contract

Valid Secret security clearance required

XSOAR Architect (Design, Implementation & Deployment)

Role Overview

Design and lead the implementation of Palo Alto Cortex Security Orchestration, Automation, and Response (XSOAR) to enable Security Incident Management (SecIM), automation, and orchestration integrated with the Elastic Security Information and Event Management (SIEM) platform.

Key Responsibilities

• Design XSOAR architecture and deployment model (multi-tenant, scalable)
• Define incident ingestion workflows from Elastic SIEM into XSOAR
• Design automation strategy and playbook framework
• Define multi-tenant architecture:
• Tenant separation
• Playbook isolation
• Role-Based Access Control (RBAC) model
• Design integrations with:
• SIEM
• Endpoint Detection and Response (EDR) platforms
• Firewalls and network security tools
• Identity and Access Management (IAM) systems
• Ticketing systems (ServiceNow, Jira)
• Define incident lifecycle and case management model (SecIM)
• Establish automation governance:
• Human-in-the-loop controls
• Approval workflows
• Risk management
• Define high availability (HA), disaster recovery (DR), and backup strategies
• Ensure alignment with Security Assessment and Authorization (SA&A) and compliance requirements
• Collaborate with Elastic, Google Cloud Platform (GCP), and network architecture teams

Required Skills

• Strong experience with Palo Alto Cortex XSOAR architecture
• Deep understanding of Security Operations Centre (SOC) workflows
• Expertise in automation and orchestration design
• Experience integrating security tools and application programming interfaces (APIs)
• Strong knowledge of incident response processes and frameworks
• Understanding of multi-tenant security platform design

Ideal Candidate Experience

• 7–10+ years in Security Operations, Incident Response, or Security Architecture
• 3–5+ years hands-on experience with Cortex XSOAR
• Experience integrating SIEM, EDR, identity, and network tools
• Experience in multi-tenant or Managed Security Service Provider (MSSP) environments
• Strong understanding of automation governance and risk management
• Experience in regulated environments
• Experience designing high-availability and disaster recovery architectures

ACCESSIBILITY

We're committed to fostering an inclusive, equitable, and accessible workplace where every team member feels valued, respected, and supported, and has the opportunity to reach their full potential. We welcome and encourage applications from people with disabilities.

Accommodations are available on request for candidates taking part in all aspects of the selection process. For a confidential inquiry, simply email your recruiter directly or to make arrangements.

If you have questions regarding accessible employment at Ateko please email our Human Resources team at

Ateko

Derek Weber - Senior Recruiter