Cyber Security Architect Job In Dublin

Security Operations Centre (SOC) Cyber Security Architect

The eir evo Security Team is responsible for protecting and monitoring our clients' organisations. We provide 24x7x365 capabilities to protect, detect, analyse, and respond to cybersecurity incidents using a combination of technology solutions and a strong set of processes.

This is a significant, established team supporting a range of enterprise client organisations. The Security Operations Team works closely with our clients and our Network Operation Team to ensure security issues are addressed quickly and effectively upon discovery.

Key Responsibilities:

• Design and implement technologies for security threat monitoring, detection, event analysis and incident reporting for the cyber security team.
• Collaborate with cross-functional teams to ensure security and operational requirements are met throughout the project lifecycle.
• Supervise the design and technical development of the SOC projects.
• Manage the team resources to quality, schedule and budget requirements.
• Coordinate with Head of SOC and SOC manager on development and delivery of Security Solution Bundles.
• Engage proactively with large customers to understand business needs & develop solutions and services to improve their security posture.
• Develop process and support the SOC as an advanced escalation point for Level II and Level III analysts and engineers.
• Support the day-to-day operation of a highly available, distributed, multi-tenant SIEM, SOAR, EDR deployment.
• Responds to, and investigates, security incidents and provides thorough post-event analyses.
• Develops project processes, timelines, checklist for ongoing system upgrades.
• Develop use cases, queries, dashboards, and visualizations to support customer requirements.
• Create custom scripts and parsing to onboard data sources not natively supported by SIEM.
• Responsibility for complete life-cycle management with event source system administrator/owners.
• Continuously assess current state of security monitoring and response solutions and recommend improvements.
• Conduct research on the latest threats and the latest technological advancements.
• Perform quarterly audits on SIEM, SOAR, EDR, VA technology.
• Work with the automation team to develop scripts and improve overall operational efficiencies.
• Support Architecture changes required to supporting evolving business needs and threat profile.
• Deliver architectural initiatives that drive and improve efficiency in line with business strategy.

Requirements:

• 8+ years of experience in the information security field
• 5+ years of experience in SIEM deployment and architecture
• Strong understanding of SIEM and UEBA
• Good understanding of MITRE ATT&CK matrices, kill chains and other attack models
• Strong knowledge of scripting languages such as Python, Powershell
• Working knowledge of cloud technologies, windows infrastructure & networking
• Experience integrating endpoint security and host-based intrusion detection solutions
• Strong knowledge on Cloud SIEM solutions and SOAR

Eir evo/eir evo talent is an equal opportunity employer who seeks to recruit and appoint the best available person for a job regardless of marital / civil partnership status, sex (including pregnancy), age, religion, belief, race, nationality and ethnic or national origin, colour, sexual orientation or disability.

Eir evo/eir evo talent apply all relevant Data Protection laws when processing your Personal Data.