Cyber Security Architect - Security Operations Center (8-15 yrs)

Job Description :

- Oversee detection, analysis, and response to security incidents, developing and implementing incident response plans for swift and effective action.

- Evaluate and recommend security technologies to enhance SOC capabilities.

- Implement and maintain security controls, troubleshoot, and resolve issues in the DevSecOps domain.

- Conduct periodic audits to identify security violations and inefficiencies, with the ability to perform proof of concept if required.

- Collaborate with cross-functional teams to mitigate and remediate security incidents.

- Conduct regular security assessments, vulnerability scans, and implement appropriate remediation measures.

- Identify vulnerabilities, weaknesses, and potential threats in infrastructure, offering actionable recommendations for risk mitigation.

- Keep users informed by preparing performance reports and communicating system status.

- Implement and manage security controls and tools to safeguard applications and infrastructure, prioritizing and assessing vulnerabilities based on potential impact.

- Provide expert guidance on risk mitigation strategies based on purple team findings, ensuring compliance with industry standards and regulations.

- Experience in team building and mentorship, with excellent communication skills to convey complex technical information to non-technical stakeholders.

- Experience in creating cybersecurity budgets.

Requirements and Skills :

- Proven work experience of 8+ years as a Cyber Security Specialist or similar role, with leadership experience managing purple teams or similar cybersecurity teams.

- In-depth knowledge of AWS Cloud Infrastructure, AWS Security Services, and other critical infrastructure security.

- Expertise in conducting penetration testing, vulnerability assessments, and social engineering.

- Ability to work under pressure, facilitate discussions, decision-making, and conflict resolution.

- Hands-on experience with security tools such as static analysis, dynamic analysis, and vulnerability scanners.

- Proficiency in analyzing high volumes of logs, network data, and other attack artifacts, with strong analytical and problem-solving skills.

- Experience with Security Audits, Incident Response, Threat Modeling, Monitoring, and Analysis.

- Proficiency with antivirus and security software, along with a strong understanding of offensive security tools and techniques.

- Preferred certifications include CISSP, OSCP, OSWE, GIAC PNPT.

- Bachelor's degree in computer science, Information Systems, or equivalent education/work experience.