Jobs · OTHR

Security Architect # 26-13212

US Tech Solutions · Columbia, SC · 4 days ago
RemoteRemoteOTHRFull-time

Responsibilities

  • Review and tune current detection rules within the SIEM.
  • Perform Gap analysis of the current detection coverage.
  • Develop detection rules/solutions to cover found Gaps.
  • Monitor threat intelligence sources for new use cases.
  • Work with SOC analysts to create and tune rules.
  • Work with the State Threat Hunter to identify and remediate detection coverage gaps.
  • Document processes, runbooks, and troubleshooting steps related to the SOAR and integrations.
  • Cook up with engineering, SOC, and agency staff as needed to meet goals.

Requirements

  • Proven experience with detection tuning/development.
  • Experience with dashboard creation and reporting.
  • Five years of Strong scripting and automation skills (Python, Bash, PowerShell, or similar).
  • Familiarity with MITRE Telecommunication&CK framework.

Skills

  • Experience with the Palo Alto Cortex XSIAM platform.
  • Deep understanding of Windows/Linux artifacts.
  • Excellent communication and customer service skills for agency facing engagement.
  • Experience in working in multi tenancy environment.
  • Experience in multi-agency or enterprise service projects.

About the role

The position will work as a consulting Detection engineer within the Division of Information Security. This role will focus on creating, tuning, and maintaining new and existing detection rules within the State monitoring environment. Engaging directly with state agencies to promote, support, and improve adoption of centralized security services is a key focus. The engagement is expected to be needed for 12 months with the possibility of extension.

Benefits

US Tech Solutions is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, colour, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Pay

TBD

Schedule

N/A

Qualifications

  • Bachelor's Degree In An Information Technology Or Information Security Related Field.
  • Eight Years Of Relevant Work Experience May Be Substituted In Lieu Of Education.
  • Five Years Of Experience In Supporting Large It Environments and/or System Deployments.

Vendors

  • CISSP, CISA, CISO or equivalent advanced security certification.
  • Additional relevant certifications (e.g., CEH, OSCP, GPEN).
  • Vendor Certifications In Detection Engineering.

Company

To know more about US Tech Solutions, please visit.

Similar jobs

Security Architect

Enzo HealthLehi, UT· 1 mo ago
Information Technologyapply on ats.rippling.com

Security Architect

thyssenkrupp Materials NASouthfield, MI· 1 mo ago
Information Technologyapply on jobs.thyssenkrupp.com

Security Architect

The Bridgespan GroupUnited States· 3 wk ago
RemoteInformation Technologyapply on phh.tbe.taleo.net

Security Architect

Veolia | North AmericaMilwaukee, WI· 1 wk ago
Information Technologyapply on jobs.smartrecruiters.com

Security Architect

AGFA HealthCareUnited States· 1 wk ago
RemoteHealthcareapply on agfa-gevaert-nv.contactrh.com

Security Architect

Internet Storm CenterManhattan Beach, CA· 3 days ago
Information Technologyapply on isc.sans.edu