Description:
- Develops recommends implements and manages the technical architecture (hardware software database and communications) which will be used for all or specific applications in a large distributed crossplatform environment.
Responsibilities:
- Responsibilities also include the identification of relevant information and the determination of the environment which will be used for development.
- Provide the resource capacity and subject matter expertise required to deliver on continued support and evolution of our primary logging monitoring and incident response platforms. This includes:
- Leading Splunk Cloud architecture and design efforts
- Leading Service Now Security Incident Response and Vulnerability Response design efforts
- Providing support and guidance on design related changes or introduction of new business requirements to Splunk Cloud or Service Now platforms
- General architecture design and configuration leadership/support as required to work towards the enablement of a modern enterprise security monitoring program and target state operating model
General Skills:
- Leadership experience in the development and implementation of technical security architectures at the specified experience level
- Extensive experience with at least two cloud service providers (i.e. AWS Azure GCP) enterprise security services Identity and database technologies and network access protocols
- Experience in structured methodologies for the design development and implementation of cloud applications
- Extensive experience in systems analysis and design in large secure solution environments
- Knowledge and experience designing processes around ITIL and is able to guide others using this methodology
- Experience translating business requirements into solution needs
- Experience preparing conceptual logical and/or physical processes and data models
- Experience developing recommending implementing and managing technical security architecture
- Awareness of emerging technologies trends and directions
- Excellent analytical problemsolving and decisionmaking skills; verbal and written communication skills; interpersonal and negotiation skills
- A team player with a track record for meeting deadlines
- Knowledge and understanding of Information Management security principles concepts policies and practices
Requirements
Experience and Skill Set Requirements:
Must Haves:
- General design and leading on design efforts and improvements on Splunk and service now
- SIEM (Azure Sentinel & SPLUNK Cloud)
- Service Now Security incident and vulnerability response
Skill Set Requirements:
Required Skills:
Advanced knowledge and experience with core security technology domains
Identity Access Management:
- Single Sign On
- Multi factor Authentication
- PKI
Infrastructure:
- Infrastructure as a Service (IaaS)
- Platform as a Service (PaaS)
- Software as a Service (SaaS)
Data:
- Digital Encryption Key Management Services
- Transparent Data Encryption
- Tokenization
- Database Activity Monitoring
Network Access Control (NAC):
- Firewall
- Cloud Security Groups
- Policy Management
- Secure Access Service Edge Architecture
Security Operation Tools:
- Endpoint Protection & Detection Response (Palo Alto Cortex XDR)
- SIEM (Azure Sentinel & SPLUNK Cloud)
Service Now Security incident and vulnerability response:
- Security Orchestration and Automated Response S.O.A.R
Agile Project Delivery:
- Experience working on agile project delivery teams
- Working Experience with
- Backlog
- User Stories
- Scrum
- Sprints
Architecture and Design Experience:
- Experience developing solution design and architecture documents
- TOGAF Architectural Framework
- Solution Design Framework and Documentation
- requirements gathering
- conceptual design
- detailed design
- Engineering implementation support
Previous Public Sector Experience:
- Previous Public Sector work experience is considered a positive
Experience and Skill Set Requirements: Must Haves: General design and leading on design efforts and improvements on Splunk and service now SIEM (Azure Sentinel & SPLUNK Cloud) Service Now - Security incident and vulnerability response Skill Set Requirements: Required Skills: Advanced knowledge and experience with core security technology domains Identity Access Management: Single Sign On Multi factor Authentication PKI Infrastructure: Infrastructure as a Service (IaaS) Platform as a Service (PaaS) Software as a Service (SaaS) Data: Digital Encryption Key Management Services Transparent Data Encryption Tokenization Database Activity Monitoring Network Access Control (NAC): Firewall Cloud Security Groups Policy Management Secure Access Service Edge Architecture Security Operation Tools: Endpoint Protection & Detection Response (Palo Alto Cortex XDR) SIEM (Azure Sentinel & SPLUNK Cloud) Service Now - Security incident and vulnerability response: Security Orchestration and Automated Response S.O.A.R Agile Project Delivery: Experience working on agile project delivery teams Working Experience with Backlog User Stories Scrum Sprints Architecture and Design Experience: Experience developing solution design and architecture documents TOGAF Architectural Framework Solution Design Framework and Documentation requirements gathering conceptual design detailed design Engineering implementation support Previous Public Sector Experience: Previous Public Sector work experience is considered a positive