Specialist – Architecture

Experience:

Location:

Type:

Overview

Cybersecurity Specialist - Architecture

SIEM/SOAR implementation, threat analysis

security automation

Key Responsibilities

• Lead the implementation, configuration, and administration of SIEM and SOAR platforms
• Create and maintain automation playbooks for security use cases
• Perform 24x7 monitoring and analysis of security logs and alerts
• Conduct detailed incident analysis and escalate as per SLA and runbook protocols
• Develop and maintain integrations with third-party tools (SIEM, ITSM, email gateways, etc.)
• Conduct malware analysis and support threat modeling efforts
• Assist with SOAR upgrades, including testing, deployment, and configuration
• Gather playbook requirements from stakeholders and contribute to platform enhancement
• Troubleshoot issues related to playbook executions and integrations
  

Required Skills

• Hands-on experience with SOAR tools (e.g., XSOAR) and SIEM platforms (e.g., Splunk, QRadar, Securonix)
• Strong knowledge of network security technologies, including Firewalls (Checkpoint, Palo Alto, Cisco ASA), IDS/IPS, Proxy, NAC (Cisco ISE, ForeScout), ZTNA
• Proficiency in Python/Shell scripting for automation and integration
• Experience in security architecture assessment, capacity planning, and cost-benefit analysis
• Familiarity with threat intelligence platforms, endpoint protection (e.g., CrowdStrike, Trellix, Symantec), and email security solutions
• Strong understanding of ZTNA, Zero Trust, SASE, and segmentation models
  

Good To Have

• Exposure to Splunk SIEM
• Experience with compliance standards (GDPR, ISO 27001, etc.)
• Certifications in security architecture or SOAR tools