Cyber Security Architect

Washington DC, 1099, W2

The Cybersecurity Architect is responsible for managing all aspects of the SIEM to include operations and maintenance for all lookup files, integrating security feeds, developing the alerting framework, developing the risk framework and the orchestration of all security devices. The role is also responsible for ensuring that data quality and that all data going into the SIEM conforms with the Common Information Model (CIM).

Requirements

  • Public Trust Clearance
  • Minimum of 7 years of experience in managing and architecting a large Splunk environment
  • At least 3 years of experience and extensive working knowledge of the Common Information Model (CIM)
  • Have a detailed understanding of and at least 3 years of experience with Splunk Enterprise Security frameworks including: notable event, threat intelligence, risk, assets & identities
  • Detailed understanding of all Splunk back-end configuration files
  • Proficient in Python programming
  • Experience developing system interconnects via API to include data exchange via XML and JSON
Join ClearedCollab

Apply for this Job

Upload your CV/resume or any other relevant file. Max. file size: 1 MB.