AP
Job Description
• Implement and administer SOAR tools (especially XSOAR) and create automated playbooks
• Monitor security logs 24×7 to detect and respond to threats as per runbooks and SLAs
• Analyse and escalate security incidents based on agreed procedures
• Integrate SOAR with SIEM, email, ITSM, and other third‑party tools
• Troubleshoot playbook execution errors and integration issues to ensure smooth operation
• Support upgrades, testing, deployment, and configuration to maintain a secure SOAR platform