Responsibilities:
Develops, recommends, implements and manages the technical architecture (hardware, software, database and communications) which will be used for all or specific applications in a large, distributed cross-platform environment.
Responsibilities also include the identification of relevant information and the determination of the environment, which will be used for development.
Provide the resource capacity and subject matter expertise required to deliver on continued support and evolution of our primary logging, monitoring and incident response platforms. This includes:
Leading Splunk Cloud architecture and design efforts
Leading Service Now – Security Incident Response and Vulnerability Response design efforts
Providing support and guidance on design related changes or introduction of new business requirements to Splunk Cloud or Service Now platforms
General architecture, design, and configuration leadership/support as required to work towards the enablement of a modern enterprise security monitoring program and target state operating model
General Skills:
Leadership experience in the development and implementation of technical security architectures at the specified experience level
Extensive experience with at least two cloud service providers (i.e. AWS, Azure, GCP) , enterprise security services, Identity and database technologies, and network access protocols
Experience in structured methodologies for the design, development and implementation of cloud applications
Extensive experience in systems analysis and design in large secure solution environments
Knowledge and experience designing processes around ITIL and is able to guide others using this methodology
Experience translating business requirements into solution needs
Experience preparing conceptual, logical and/or physical processes and data models
Experience developing, recommending, implementing and managing technical security architecture
Awareness of emerging technologies, trends and directions
Excellent analytical, problem-solving and decision-making skills; verbal and written communication skills; interpersonal and negotiation skills
A team player with a track record for meeting deadlines
Knowledge and understanding of Information Management security principles, concepts, policies and practices
Experience and Skill Set Requirements
Required Skills - 45%
Advanced knowledge and experience with core security technology domains
Identity Access Management
Single Sign On
Multi factor Authentication
PKI
Infrastructure
Infrastructure as a Service (IaaS)
Platform as a Service (PaaS)
Software as a Service (SaaS)
Data
Digital Encryption Key Management Services
Transparent Data Encryption
Tokenization
Database Activity Monitoring
Network Access Control (NAC)
Firewall
Cloud Security Groups
Policy Management
Secure Access Service Edge Architecture
Security Operation Tools
Endpoint Protection & Detection Response (Palo Alto Cortex XDR)
SIEM (Azure Sentinel & SPLUNK Cloud)
Service Now - Security incident and vulnerability response
Security Orchestration and Automated Response S.O.A.R
Agile Project Delivery - 15%
Experience working on agile project delivery teams
Working Experience with
Backlog
User Stories
Scrum
Sprints
Architecture and Design Experience - 35%
Experience developing solution design and architecture documents
TOGAF Architectural Framework
Solution Design Framework and Documentation
requirements gathering
conceptual design
detailed design
Engineering implementation support
Previous Public Sector Experience - 5%
Previous Public Sector work experience is considered a positive
Must haves:
| Mandatory Skills |
Candidate Experience (Years) |
Details |
| General design and leading on design efforts and improvements on Splunk and service now |
|
|
| SIEM (Azure Sentinel & SPLUNK Cloud) |
|
|
| Service Now - Security incident and vulnerability response |
|
|