Security Operations Center Architect

As a SOC Architect / Lead at SvelteTech, you will play a crucial role in designing, implementing, and leading the next-generation Security Operations Center (SOC). If you are passionate about SOC design, Elastic Stack, SIEM/SOAR, and have experience in leading security teams, this is an excellent opportunity for you to make a significant impact at scale. **Role Overview:** - Architect and implement SOC using Elastic SIEM, SOAR, and threat intel pipelines. - Lead and mentor SOC Engineers, including building dashboards, detection logic, and correlation rules. - Drive proactive threat hunting activities and integrate global intelligence sources such as MISP, OTX, and AbuseIPDB. - Establish incident response workflows, escalation paths, and ensure compliance with standards such as ISO 27001, PCI-DSS, SOC 2, GDPR, and CERT-In. - Deliver SOC reports, key performance indicators (KPIs), and Service Level Agreement (SLA) dashboards to Chief Information Security Officers (CISOs) and executives. - Act as the technical representative of SOC for leadership and customers. **Key Responsibilities:** - 8-12 years of experience in Cybersecurity, with at least 4 years in SOC leadership and architecture roles. - Profound expertise in Elastic Stack components such as Elasticsearch, Logstash, Kibana, and Beats. - Strong knowledge of SIEM, SOAR, Extended Detection and Response (XDR), threat hunting, and incident response workflows. - Hands-on experience in setting up SOCs from scratch, scaling them, and optimizing their performance. - Familiarity with handling both cloud and on-premises log sources. - Bonus points for experience in telecom data analysis, including Call Detail Records (CDR), Internet Protocol Detail Records (IPDR), and Packet Capture (PCAP). - Excellent leadership skills and effective communication with stakeholders. **Qualifications:** - Bachelors or Masters degree in Computer Science, Cybersecurity, or a related field. - Preferred certifications include Elastic Certified, Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), and various GIAC certifications (GCIA/GCIH/GMON), Offensive Security Certified Professional (OSCP).,