Security Architect

Seeking an experienced Security Architect for a fully remote contracted position for a Columbia, SC based organization. This contract is slated for 12 months with a possibility of extension. Security clearance is required as well as US Citizenship.

SCOPE OF THE PROJECT:

• The position will work as a consulting Detection engineer within the Division of Information Security. This role will focus on creating, tuning, and maintaining new and existing detection rules within the State monitoring environment. Engaging directly with state agencies to promote, support, and improve adoption of centralized security services is a key focus. The engagement is expected to be needed for 12 months with the possibility of extension.

DAILY DUTIES & RESPONSIBILITIES:

• Review and tune current detection rules within the State SIEM.
• Perform Gap analysis of the current detection coverage.
• Develop detection rules/solutions to cover found Gaps.
• Monitor threat intelligence sources for new use cases.
• Work with analysts to create and tune rules.
• Work with the Threat Hunter to identify and remediate detection coverage
• gaps.
• Document processes, runbooks, and troubleshooting steps related to the SOAR and integrations.

Browse our curated collection of remote jobs across all categories and industries, featuring positions from top companies worldwide.

• Coordinate with engineering, SOC, and agency staff as needed to meet goals.

PREFERRED SKILLS:

• Experience with the Palo Alto Cortex
• Deep understanding of Windows/Linux artifacts.
• Proven experience with detection tuning/development.
• Experience with dashboard creation and reporting