Key skills
Communication
About this role
Job: Security Architect
Location: Columbia, SC ( Mostly Remote- 10 % onsite)
REVIEW AND TUNE CURRENT DETECTION RULES WITHIN THE STATE SIEM.
PERFORM GAP ANALYSIS OF THE CURRENT DETECTION COVERAGE.
DEVELOP DETECTION RULES/SOLUTIONS TO COVER FOUND GAPS.
MONITOR THREAT INTELLIGENCE SOURCES FOR NEW USE CASES.
WORK WITH STATE SOC ANALYSTS TO CREATE AND TUNE RULES.
WORK WITH THE STATE THREAT HUNTER TO IDENTIFY AND REMEDIATE DETECTION
COVERAGE GAPS.
DOCUMENT PROCESSES, RUNBOOKS, AND TROUBLESHOOTING STEPS RELATED TO THE
SOAR AND INTEGRATIONS.
COORDINATE WITH ENGINEERING, SOC, AND AGENCY STAFF AS NEEDED TO MEET
GOALS.
OTHER DUTIES AS NEEDED.
Required Skills:
PROVEN EXPERIENCE WITH DETECTION TUNING/DEVELOPMENT..
EXPERIENCE WITH DASHBOARD CREATION AND REPORTING.
EXCELLENT COMMUNICATION AND CUSTOMER SERVICE SKILLS FOR AGENCY-FACING ENGAGEMENT.
EXPERIENCE IN WORKING IN MULTI- TENANCY ENVIRONMENT
EXPERIENCE IN MULTI-AGENCY OR ENTERPRISE SERVICE PROJECTS.
Preferred Skills:
EXPERIENCE WITH THE PALO ALTO CORTEX XSIAM PLATFORM.
DEEP UNDERSTANDING OF WINDOWS/LINUX ARTIFACTS