Security Architect

Position Overview: We are looking for an experienced SIEM Architect / Security Engineer with expertise in Splunk Enterprise Security to design, optimize, and manage our security monitoring infrastructure. In this role, you'll lead SIEM configuration efforts, improve threat detection, and handle complex security incidents, while ensuring system stability and performance. Key Responsibilities: SIEM Configuration & Optimization : Design, configure, and enhance Splunk and related security tools, including data ingestion, alerting, and data normalization. Incident Response : Act as lead handler for complex security incidents, conducting root cause analysis and coordinating response efforts. Leadership & Strategy : Provide guidance on security tool selection, upgrades , and optimizations. Serve as a knowledge resource within the team. Risk Mitigation : Recommend and implement strategies to address security gaps and mitigate risks across the organization. Desired Skills & Experience: Experience : Several years working with Splunk Enterprise Security or similar SIEM platforms. Proven experience in data ingestion , alerting , and utilizing threat intelligence and machine learning in SIEM. Leadership experience in incident response , system optimization , and SIEM improvements . Skills : Strong background in security operations and incident handling . Excellent communication skills, with the ability to document and convey technical information effectively. Familiarity with other security tools (e.g., firewalls, endpoint protection) is a plus. Education: Bachelors degree in Information Security , Computer Science , or related field, or equivalent experience.