Bash Scripting, Communication Skills, Computer Security, Customer Support/Service, GPEN - GIAC Penetration Tester, Gap Analysis, Identify Issues, Industry Standards, Information Technology & Information Systems, Linux Operating System, Microsoft Windows Operating System, Problem Solving Skills, Python Programming/Scripting Language, Reporting Dashboards, Reporting Skills, Scripting (Scripting Languages), Security Architecture, Security Information and Event Management (SIEM), Technical Recruiting, Technical Support, Use Cases, Windows PowerShell
Hi,
Title: Security Architect
Location: Remote
Duration of the Contract: 12 months
Possibility for Extension: Yes
Daily Duties / Responsibilities
Additional Skills and Duties- Proven experience with detection tuning/development.
- Experience with dashboard creation and reporting.
Preferred Skills (Ranked by Importance)- Experience with the Palo Alto Cortex XSIAM platform.
- Deep understanding of Windows/Linux artifacts.
- Excellent communication and customer service skills for agency-facing engagement.
- Experience working in a multi-tenancy environment.
- Experience in multi-agency or enterprise service projects.
Required Education / Certifications- Bachelor's Degree in an Information Technology or Information Security related field.
- Eight years of relevant work experience may be substituted in lieu of education.
- Five years of experience supporting large IT environments and/or system deployments.
- 5+ years of strong scripting and automation skills (Python, Bash, PowerShell, or similar).
- Understanding of Sigma, YARA, and other industry-standard detection languages.
- Familiarity with MITRE ATT&CK framework.
Preferred Education / Certifications- CISSP, CISA, CISO, or equivalent advanced security certification.
- Additional relevant certifications (e.g., CEH, OSCP, GPEN).
- Vendor certifications in Detection Engineering.
PREFERENCE WILL BE GIVEN TO A CANDIDATE WHO CAN WORK ONSITE OVER HYBRID AND OVER FULL-TIME REMOTE (ON-SITE AS NEEDED).- Review and tune current detection rules within the State SIEM.
- Perform gap analysis of the current detection coverage.
- Develop detection rules/solutions to cover found gaps.
- Monitor threat intelligence sources for new use cases.
- Work with State SOC analysts to create and tune rules.
- Work with the State Threat Hunter to identify and remediate detection coverage gaps.
- Document processes, runbooks, and troubleshooting steps related to the SOAR and integrations.
- Coordinate with engineering, SOC, and agency staff as needed to meet goals.
- Other duties as needed.
Kind Regards,
Faizan Shakeel
Technical Recruiter | Syntricate Technologies Inc.
Phone: (781) 745-8137
Email: faizan@syntricatetechnologies.com
Office: 2 Bridgeview Cir #8-14A, Tyngsborough, MA 01879
www.syntricatetechnologies.com
MBE Certified | E-Verified | EEO Firm
![A38E0AAC]()
![CE54419A]()
This email may contain confidential information intended only for the recipient. If received in error, please notify the sender and delete it. To unsubscribe, reply with %20unsubscribe@syntricatetechnologies.com?subject=Unsubscribe%20Me
S
Syntricate Technologies Inc