Security Architect - Consultant - Fully REMOTE but Preferred LOCAL or Near by South Carolina

Security Architect - Consultant - Fully REMOTE but Preferred LOCAL or Near by South Carolina

Posted Today by RICEFW Technologies Inc

Apply
Negotiable
Undetermined
Remote
Remote or Columbia, South Carolina
Apply
Application Programming Interface (API) Automation Bash (Scripting Language) Certified Ethical Hacker (CEH) Cyber Incident Response Dashboard Information Technology JSON MITRE ATT&CK Framework Scripting Windows PowerShell Workflows YAML

Summary: The Security Architect - Consultant role is a fully remote position that emphasizes the development and optimization of automation workflows, particularly within the Cortex XSOAR platform. Candidates are preferred to be local to South Carolina, although nationwide applicants are welcome. The contract duration is 12 months with a possibility for extension, and the interview process may include a virtual round followed by an onsite round if necessary.

Key Responsibilities:

  • Provide technical expertise and experience in creating efficient automation workflows.
  • Develop, implement automations and optimize existing automations in response to security alerts and incidents.
  • Build and maintain integrations with the SOAR platform.
  • Create custom scripts when required to provide functionality not supported out of the box integrations.
  • Document processes, runbooks, and troubleshooting steps related to the SOAR and integrations.
  • Proactively coordinate with engineering, SOC, and IR support as needed to meet goals.
  • Other duties as needed.

Key Skills:

  • Bachelor's degree in an Information Technology or Information Security related field.
  • Eight years of relevant work experience may be substituted in lieu of education.
  • Five years of experience in supporting large IT environments and/or system deployments.
  • 5+ years of experience with automation platforms or SOAR solutions.
  • Strong scripting and automation skills (Python, Bash, PowerShell, or similar).
  • Understanding of REST APIs, JSON, and YAML.
  • Familiarity with MITRE ATT&CK framework.
  • Experience in working in multi-tenancy environment; experience in multi-agency or enterprise service projects.
  • Experience with dashboard creation and reporting.
  • Excellent communication and customer service skills for agency-facing engagement.
  • CISSP, CISA, CISO or equivalent advanced security certification preferred.
  • Additional relevant certifications (e.g., CEH, OSCP, GPEN) preferred.
  • Vendor certifications in SOAR or automation technologies preferred.

Salary (Rate): £95/hr

City: Columbia

Country: United States

Working Arrangements: remote

IR35 Status: undetermined

Seniority Level: undetermined

Industry: IT

Detailed Description From Employer:

Will close to submissions on 05/05 at 5:00PM EST.
Interview Process: 1 round, Virtual/Online - potential for a 2nd round onsite as needed
Duration of the Contract: 12 months
Possibility for Extension: Yes

Work Location: Fully Remote
Candidate Location: No SC residency required. Open to nationwide candidates.

Daily Duties / Responsibilities:

PREFERENCE WILL BE GIVEN TO A CANDIDATE WHO CAN WORK ONSITE OVER HYBRID AND OVER FULL-TIME REMOTE (ON-SITE AS NEEDED).

  • provide technical expertise and experience in creating efficient automation workflows.
  • Develop, implement automations and optimize existing automations in response to security alerts and incidents.
  • Build and maintain integrations with the SOAR platform.
  • Create custom scripts when required to provide functionality not supported out of the box integrations.
  • Document processes, runbooks, and troubleshooting steps related to the SOAR and integrations.
  • proactively Coordinate with engineering, SOC, and IR support as needed to meet goals.
  • other duties as needed.

Additional skills/duties:

  • Experience with dashboard creation and reporting.
  • Excellent communication and customer service skills for agency-facing engagement.

Preferred Skills (rank in order of Importance):

  • Experience creating automations within the Cortex XSOAR platform.
  • Knowledge of security monitoring use cases and incident response support.
  • Resources local to columbia, south carolina or surrounding city in south carolina are preferred

Required Education/Certifications:

  • BACHELOR'S DEGREE IN AN INFORMATION TECHNOLOGY OR INFORMATION SECURITY RELATED FIELD
  • EIGHT YEARS OF RELEVANT WORK EXPERIENCE MAY BE SUBSTITUTED IN LIEU OF EDUCATION
  • FIVE YEARS OF EXPERIENCE IN SUPPORTING LARGE IT ENVIRONMENTS AND/OR SYSTEM DEPLOYMENTS
  • 5+ years of experience with automation platforms or SOAR solutions.
  • Strong scripting and automation skills (Python, Bash, PowerShell, or similar).
  • Understanding of REST APIs, JSON, and YAML.
  • Familiarity with mitre att & ck framework
  • Experience in working in multi-tenancy environment; Experience in multi-agency or enterprise service projects.

Preferred Education/Certifications:

  • CISSP, CISA, CISO or equivalent advanced security certification.
  • Additional relevant certifications (e.g., CEH, OSCP, GPEN).
  • VENDOR CERTIFICATIONS IN SOAR OR AUTOMATION TECHNOLOGIES.
Apply
Similar Jobs
Loading data...