Security Architect

Project Role : Security Architect
Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations.
Must have skills : Security Information and Event Management (SIEM)
Good to have skills : NA
Minimum 7.5 year(s) of experience is required
Educational Qualification : 15 years full time education

Summary: SOC SME leads in architectural design, specification, and maintenance of SIEM, SOAR & EDR Security services. Candidates must have background in network planning and design, implementation, and operations. SOC SMEs applies business and technology skills with structured methodologies to deliver complex solutions to the customer. Candidates must have experience to lead and enable Accenture and its clients to generate global impact through identification, development and implementation of proprietary and innovative ideas for Incident Management and Response activities. Roles & Responsibilities: • Drive strategy of incident response for high/critical cyber security events/Incidents. • Drive new innovations & automations across supported clients. • Serve as point of contact throughout the incident lifecycle, interacting directly with executives. • Interface with technical personnel and other teams as required for SIEM/SOC Service Transition and critical service activities. • Mature understanding of industry accepted standards for incident response actions and best practices related to SOC operations. • Track and ensure implementation of correlation rules within SIEM & Playbooks on SOAR platforms. • Operational knowledge of system and network security engineering best practices and architecture • Appropriately inform and advise management on incidents and incident prevention and serve as POC during escalations. • Encourages and implements continuous service improvement (CSI) measures on day-to-day operational activities. • Leverages extensive knowledge of security incidents and communications in a manner that provides business value to organization and client • Participate in knowledge sharing with Leads and develop solutions efficiently • Coordinate or participate in individual or team projects • Provide and present performance metrics, Weekly and Monthly reports to Internal and Client Stakeholders • Introduce Risk based security dashboards/posture providing business value to supported clients. • Develop and optimize technical processes and coordinate procedure documentation Professional & Technical Skills: • At least 8+ years of experience in Information Security, Risk Management, Infrastructure Security and Compliance • Good understanding on EDR, SOAR, Email Gateway, and other security platforms. • Expertise in managing UNIX/Linux, Windows, and security devices. • Exploit and detection analysis skills, including ability to analyze logs for useful information and patterns. • Track completion of content creation regarding advanced threat analysis (rules, variables, trending, watch lists, etc.) of incoming data and for self-monitoring of the solution itself. • Good understanding of Infrastructure Security and its impact on Security Operations, Vulnerabilities, Reporting, Analytics and Monitoring. • Good understanding and experiences with Infrastructure Security, Risk assessment and Security Information and Event Management. • A solid understanding of frameworks such as ISO 27001/27002, COBIT, and other relevant compliance such PCI, HIPAA, SOX, FISMA, and others required for Security Information and Event Management Additional Information: • Bachelor’s and above degree in Computer Science, Information & Technology, MIS, Engineering. • A 15-year full-time education is required. • Experience working in a diversified, virtual environment. • Desirable to have some certifications such as CISSP, ITIL, CISA, CISM • Advanced Certification from SIEM vendor on products such as McAfee Nitro, HP ArcSight, Splunk or RSA envision.