Security Architect
Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations.
Must have skills : Security Information and Event Management (SIEM)
Good to have skills : NA
Minimum 5 year(s) of experience is required
Educational Qualification : 15 years full time education
Summary: As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. You will also document the implementation of cloud security controls and transition to cloud security-managed operations. Roles & Responsibilities: -• Threat Detection Development: Develop, implement, and fine-tune SIEM detection rules and alerts to identify potential security threats, anomalies, and policy violations. • MITRE ATT&CK Framework Utilization: Leverage the MITRE ATT&CK framework to develop and enhance detection strategies, ensuring comprehensive coverage of adversary tactics and techniques. • Advanced Threat Model Design and Implementation: Develop, implement, and fine-tune sophisticated threat models that address existing and new, emerging threats by leveraging complex data correlations and threat intelligence that go beyond basic signature-based detections. • Incident Analysis and Response: Collaborate with the incident response team to analyze security alerts, investigate incidents, and provide insights to enhance detection capabilities and response strategies. • SIEM Configuration and Management: Design, configure, and manage SIEM systems to ensure comprehensive monitoring and logging of security events across the organization. • Use Case Development: Create and implement security use cases that align with the MITRE ATT&CK framework, enhancing the organization’s ability to detect and respond to advanced threats. • Integration and Optimization: Integrate SIEM solutions with other security tools and data sources, continuously optimizing performance and accuracy to reduce false positives and enhance detection efficacy. • SOC KPI Metrics Development: Develop and monitor key performance indicators (KPIs) for the Security Operations Center (SOC) to measure the effectiveness and efficiency of security operations, incident response times, and detection accuracy. • SOC Consultations: Collaborate with SOC analysts and other cybersecurity stakeholders to provide expert consultations and recommendations on improving detection strategies, response processes, and overall SOC performance. • Threat Intelligence Collaboration: Work closely with threat intelligence teams to incorporate the latest threat information into SIEM detection strategies, ensuring proactive identification of emerging threats. • Detection Gap Analysis: Conduct regular gap analyses to identify and address deficiencies in current detection capabilities, using the MITRE ATT&CK framework to prioritize improvements. • Documentation and Reporting: Maintain detailed documentation of SIEM configurations, detection rules, and incident analyses to support compliance requirements and knowledge sharing. • Continuous Improvement: Stay updated with the latest developments in cybersecurity threats and SIEM technologies, applying new insights to improve detection strategies and systems. • Training and Mentorship: Provide training and mentorship to junior team members on the use of SIEM technologies and the application of the MITRE ATT&CK framework for threat detection. Professional & Technical Skills: - Must To Have Skills: Proficiency in Security Information and Event Management (SIEM) - Strong understanding of threat intelligence analysis - Experience with security incident response - Knowledge of security compliance frameworks - Hands-on experience with security tools and technologies Additional Information: - The candidate should have a minimum of 5 years of experience in Security Information and Event Management (SIEM) - This position is based at our Bengaluru office - A 15 years full time education is required
Bengaluru
Equal Employment Opportunity Statement
All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law.
Please read Accenture’s Recruiting and Hiring Statement for more information on how we process your data during the Recruiting and Hiring process.
We work with one shared purpose: to deliver on the promise of technology and human ingenuity. Every day, more than 775,000 of us help our stakeholders continuously reinvent. Together, we drive positive change and deliver value to our clients, partners, shareholders, communities, and each other.
We believe that delivering value requires innovation, and innovation thrives in an inclusive and diverse environment. We actively foster a workplace free from bias, where everyone feels a sense of belonging and is respected and empowered to do their best work.
At Accenture, we see well-being holistically, supporting our people’s physical, mental, and financial health. We also provide opportunities to keep skills relevant through certifications, learning, and diverse work experiences. We’re proud to be consistently recognized as one of the World’s Best Workplaces™.
Join Accenture to work at the heart of change. Visit us at www.accenture.com.
We have been alerted to the existence of fraudulent messages asking job seekers to set up payment to cover various costs associated with establishing employment at Accenture. No one is ever required to pay for employment at Accenture. If you are contacted by someone asking for payment, please do not respond, and contact us at india.fc.check@accenture.com immediately.