Cybersecurity SOC Architect

City/StateVirginia Beach, VAOverviewWork ShiftFirst (Days) (United States of America)Sentara Health is seeking an experienced Cyber Security professional to join our team as a Security Operations Center (SOC) Architect!This position is 100% remote but candidates must have a current residence in one of the following states or be willing to relocate: AL, DE, FL, GA, ID, IN, KS, LA, ME, MD, MN, NE, NH, ND, NV, OK, OH, PA, SC, NC, SD, TN, TX, WA, VA, WV, WI.As a SOC Architect, you will play a vital role in designing, implementing, and maintaining an efficient and effective security operations infrastructure to protect our organization's sensitive data and assets. Your expertise will be crucial in developing and executing strategic security initiatives, building robust incident response processes, and ensuring continuous improvement of our security operations capabilities.Minimum Requirement:Bachelor's DegreeExperience in lieu of Bachelor's DegreeProven experience (5+ years) in designing and architecting Security Operations Center infrastructure and processes, preferably in a large-scale healthcare organization or a similarly regulated industry.In-depth knowledge of security operations principles, methodologies, and best practices.Strong understanding of network architecture, security technologies, and tools, including SIEM, IDS/IPS, vulnerability management, and threat intelligence platforms.Expertise in incident response planning and execution, including experience in leading and coordinating incident response efforts.Familiarity with regulatory requirements and industry standards such as HIPAA, HITECH, NIST, and MITRE ATT&CK framework.Strong analytical and problem-solving skills, with the ability to think strategically and provide innovative solutions.Excellent communication and collaboration skills, with the ability to effectively interact with technical and non-technical stakeholders.Relevant certifications such as CISSP, CISM, or GIAC certifications are desirable.Responsibilities:SOC Infrastructure Design: Design and architect the organization's Security Operations Center infrastructure, including network architecture, security tools, technologies, and processes, to enable effective security monitoring, detection, and incident response.Incident Response Planning: Develop and implement incident response plans, including defining roles and responsibilities, escalation procedures, and communication protocols, to ensure timely and effective response to security incidents and minimize their impact.Threat Intelligence Integration: Collaborate with the threat intelligence team to integrate threat intelligence feeds, tools, and platforms into the SOC infrastructure, enhancing the organization's ability to proactively detect and respond to emerging threats.Security Monitoring and Analysis: Define and implement comprehensive monitoring and analysis strategies, leveraging security information and event management (SIEM) solutions, intrusion detection systems (IDS), and other relevant tools, to identify security incidents, conduct investigations, and provide real-time threat intelligence.Security Incident Response: Assist the incident response team in investigating security incidents, coordinating with relevant stakeholders, and ensuring appropriate actions are taken to contain, eradicate, and recover from incidents. Develop and maintain incident response playbooks and conduct regular incident response drills.Security Operations Enhancement: Continuously evaluate and enhance the efficiency and effectiveness of security operations processes and technologies, incorporating industry best practices and emerging trends. Identify and implement automation and orchestration opportunities to streamline SOC workflows.Documentation and Reporting: Maintain accurate and up-to-date documentation of SOC infrastructure, processes, and procedures. Generate regular reports on security operations performance, incidents, and metrics to management and stakeholders.Sentara employees

#J-18808-Ljbffr