SOAR consutant

About the role:

This role involves working directly with customers to design, deploy, and customize

FortiSOAR for their SOC /NOC Operations . The consultant will translate SOC use

cases into automated workflows, build integrations with security tools, and enable

organizations to accelerate and scale their incident response.

Key Responsibilities:

1. Implementation & Deployment

● Lead end-to-end implementation of FortiSOAR for enterprise

● customers.

● Design and configure FortiSOAR playbooks, connectors,

● dashboards, and case management solutions.

● Deploy FortiSOAR in enterprise and MSSP/multi-tenant

● Environments.

2. Customer Engagement

● Conduct workshops with SOC teams to capture requirements

● and use cases.

● Map business and technical requirements into FortiSOAR

● workflows.

● Provide guidance on best practices for automation,

● orchestration, and integrations.

3. Playbook Design & Customization

● Translate SOC processes into automated workflows aligned with

● MITRE ATT&CK, NIST, and Cyber Kill Chain frameworks.

● Develop enrichment, correlation, and response playbooks that

● reduce analyst workload.

● Customize and extend FortiSOAR through scripting

● (Python/REST API) where needed.

4. Integrations & Ecosystem

● Implement and validate integrations with SIEM solutions , EDR,

● firewalls, vulnerability management, TIPs, and ITSM tools etc.

● Configure Threat Intelligence Management solutions for real-

● time IOC enrichment.

5. Enablement & Handover

● Deliver knowledge transfer and training to SOC analysts and

● admins.

● Provide documentation, best practices, and operational

● guidelines for long-term adoption.

Required Skills & Experience:

● Experience in Security Automation or Security Consulting.

● Strong hands-on expertise with FortiSOAR or similar SOAR platforms like

● Palo Alto XSOAR, Splunk SOAR etc.

● Familiarity with SOC operations and incident response process.

● Good understanding of SIEM tools (QRadar, Splunk, Sentinel, ArcSight,

● etc.)

● Strong scripting skills in Python and REST API knowledge.

● Knowledge of firewalls, endpoint security, threat detection technologies etc.

● Experience in designing security integrations and automation workflows.

Soft Skills:

● Excellent consulting, communication, presentation and client-facing skills.

● Ability to translate business requirements into technical designs.

● Strong problem-solving and troubleshooting skills.