Cyber Threat Response Analyst
Spectraforce
US
Remote
2 days ago
Job Description
Title: Cyber Threat Response Analyst
Duration: 06 months
Location: Remote
What are the top skills required for this role?
1.Palo Alto – XSIAM, XSOAR
Job Description/ Responsibilities
Design, build, and maintain XSOAR/XSIAM automation and response playbooks aligned to CTR use cases.
• Develop and tune AI-assisted detection logic to improve alert fidelity, reduce false positives, and expand coverage.
• Assist in the automation of BAU CTR processes including alert triage, enrichment, containment, and response actions to reduce analyst workload.
• Partner with CTR analysts and engineering teams to identify operational gaps and translate them into automation and detection use cases.
• Test, validate, and document playbooks and detections prior to production deployment.
• Support incident response activities through automation and post-incident improvement of detections and playbooks.
• Provide documentation and knowledge transfer to internal staff to ensure sustainability after the engagement.
Hands-on experience with Palo Alto XSOAR and/or XSIAM, including playbook development, integrations, and automation.
• Strong understanding of SOC operations, detection engineering, and incident response workflows.
• Working knowledge of MITRE ATT&CK and modern adversary techniques.
• Senior-level experience preferred to minimize ramp-up time.
At SPECTRAFORCE, we are committed to maintaining a workplace that ensures fair compensation and wage transparency in adherence with all applicable state and local laws. This position’s starting pay is: $ 50.00/hr.
Duration: 06 months
Location: Remote
What are the top skills required for this role?
1.Palo Alto – XSIAM, XSOAR
Job Description/ Responsibilities
Design, build, and maintain XSOAR/XSIAM automation and response playbooks aligned to CTR use cases.
• Develop and tune AI-assisted detection logic to improve alert fidelity, reduce false positives, and expand coverage.
• Assist in the automation of BAU CTR processes including alert triage, enrichment, containment, and response actions to reduce analyst workload.
• Partner with CTR analysts and engineering teams to identify operational gaps and translate them into automation and detection use cases.
• Test, validate, and document playbooks and detections prior to production deployment.
• Support incident response activities through automation and post-incident improvement of detections and playbooks.
• Provide documentation and knowledge transfer to internal staff to ensure sustainability after the engagement.
Hands-on experience with Palo Alto XSOAR and/or XSIAM, including playbook development, integrations, and automation.
• Strong understanding of SOC operations, detection engineering, and incident response workflows.
• Working knowledge of MITRE ATT&CK and modern adversary techniques.
• Senior-level experience preferred to minimize ramp-up time.
Applicant Notices & Disclaimers
- For information on benefits, equal opportunity employment, and location-specific applicant notices, click here
At SPECTRAFORCE, we are committed to maintaining a workplace that ensures fair compensation and wage transparency in adherence with all applicable state and local laws. This position’s starting pay is: $ 50.00/hr.