Description

The Senior Solutions Architect works with user groups to solve business problems with Security Information and Event Management (SIEM), Security Orchestration, Automation, and Response (SOAR), and other big data analytics and automation platforms.

Responsibilities

The Senior Solutions Architect translates business needs into technical systems solutions. Integrates hardware, software, and data to deliver working automations and orchestrated response actions to drive down risk, streamline security operations, and reduce manual processes. This role will also influence department’s strategy, make decisions on moderately complex to complex issues regarding technical approach for project components.  The Senior Solutions Architect will take the lead supporting SOAR development and SIEM operations while exercising considerable latitude in determining objectives and approaches to assignments.

Required Qualifications

• Some exposure to Key technologies such as: Python, Splunk, Phantom & Apache Airflow
• Hands-on experience developing solutions with SIEM tools (Splunk, QRadar, ArcSight, Sentinel, etc.)
• Experience with Splunk Search Processing Language (SPL), Splunk Enterprise Security (ES) premium app, Splunk Common Information Model (CIM) compliance, Splunk data models, Splunk sequence templates, tuning notable events, etc.
• Hands-on experience planning, designing, creating, debugging automation playbooks with SOAR platforms (Phantom, Airflow, Swimlane, Cortex XSOAR, etc.)
• Must be passionate about contributing to an organization focused on continuously improving consumer experiences
• Ability to break down technical concepts, helping stakeholders/customers understand true business impact
• Ability to work collaboratively across a variety of business units to implement automation and orchestration
• Strong documentation, presentation, and reporting abilities
• Strong experience in security solutions and agile design principles/practices, DevOps methodologies/tools, and SDLC

Preferred Qualifications

• Bachelor's degree in Engineering, Computer Science, Cyber Security, Data Science, Analytics, or related
• Splunk certification (ES Certified Admin, Phantom Certified Admin, etc)
• Hands-on experience with incident case management systems like ServiceNow Security Operations (SecOps), IBM Resilient, etc
• Experience with security incident response, security operations, threat intelligence, threat hunting, digital forensics, etc.