Security Architect in Columbia, SC

vTech Solution

NULL, WA(remote)

JOB DETAILS
SKILLS
Bash Scripting, Communication Skills, Computer Security, Customer Support/Service, GPEN - GIAC Penetration Tester, Gap Analysis, Identify Issues, Industry Standards, Information Technology & Information Systems, Linux Operating System, Microsoft Windows Operating System, Python Programming/Scripting Language, Reporting Dashboards, Reporting Skills, Scripting (Scripting Languages), Security Architecture, Security Consulting, Security Information and Event Management (SIEM), Technical Support, Use Cases, Windows PowerShell
LOCATION
NULL, WA
POSTED
4 days ago
a { text-decoration: none; color: #464feb; } tr th, tr td { border: 1px solid #e6e6e6; } tr th { background-color: #f5f5f5; }
Job Details
Job Title:
Security Architect Consultant
Location: Remote (Columbia, SC)
Job Type: Contract 12 Months
Interview: Video Job DescriptionDaily Duties / Responsibilities:

Preference will be given to a candidate who can work onsite over hybrid and over full-time remote (on-site as needed).

  • Review and tune current detection rules within the Client SIEM
  • Perform gap analysis of the current detection coverage
  • Develop detection rules/solutions to cover identified gaps
  • Monitor threat intelligence sources for new use cases
  • Work with SOC analysts to create and tune rules
  • Work with the Threat Hunter to identify and remediate detection coverage gaps
  • Document processes, runbooks, and troubleshooting steps related to the SOAR and integrations
  • Coordinate with engineering, SOC, and agency staff as needed to meet goals
  • Other duties as needed
Additional Skills and Duties
  • Proven experience with detection tuning/development
  • Experience with dashboard creation and reporting
Preferred Skills (rank in order of Importance):
  • Experience with the Palo Alto Cortex XSIAM platform
  • Deep understanding of Windows/Linux artifacts
  • Excellent communication and customer service skills for agency-facing engagement
  • Experience working in multi-tenancy environments
  • Experience in multi-agency or enterprise service projects
Required Education / Certifications:
  • Bachelor's degree in an Information Technology or Information Security related field
  • Eight years of relevant work experience may be substituted in lieu of education
  • Five years of experience in supporting large IT environments and/or system deployments
  • 5+ years of strong scripting and automation skills (Python, Bash, PowerShell, or similar)
  • Understanding of Sigma, YARA, and other industry standard detection languages
  • Familiarity with MITRE ATT&CK framework
Preferred Education / Certifications:
  • CISSP, CISA, CISO, or equivalent advanced security certification
  • Additional relevant certifications (e.g., CEH, OSCP, GPEN)
  • Vendor certifications in detection engineering

About the Company

v

vTech Solution