Security Architect

undefined ago • 3-5 Years

Job Summary

Job Description

As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to assess security needs, documenting the implementation of cloud security controls, and facilitating the transition to cloud security-managed operations. You will engage in discussions to refine security strategies and ensure compliance with industry standards, all while adapting to the evolving landscape of cloud security challenges.
Must have:
  • Define cloud security framework and architecture.
  • Ensure cloud security meets business requirements and performance goals.
  • Document cloud security controls and transition to managed operations.
  • Security Information and Event Management (SIEM) expertise.
  • 2+ years hands-on Splunk engineering experience.
  • Proficiency in Splunk Search Processing Language (SPL).
  • Create, test, and tune security detection content.
  • Onboard and parse logs from various sources.
  • Work with Splunk data models (CIM), field extractions, knowledge objects.
  • Design and optimize Splunk index structures and data retention.
  • Integrate SOAR platforms with Splunk.
  • Familiarity with Splunk Enterprise Security (ES) and MITRE ATT&CK.
  • Design, implement, and maintain Splunk search queries, rules, dashboards.
  • Troubleshoot and resolve log source parsing issues.
  • Scripting skills (Python, regex, shell scripting).
  • Strong understanding of security operations, threat landscapes, log analysis.
  • Provide Splunk SIEM and SOAR support.
  • 2+ years in SIEM Content Engineering/Platform Support within SOC.

Job Details

Project Role : Security Architect

Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations.

Must have skills : Security Information and Event Management (SIEM)

Good to have skills : NA

Minimum 3 year(s) of experience is required

Educational Qualification : 15 years full time education

Summary: As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to assess security needs, documenting the implementation of cloud security controls, and facilitating the transition to cloud security-managed operations. You will engage in discussions to refine security strategies and ensure compliance with industry standards, all while adapting to the evolving landscape of cloud security challenges. Roles & Responsibilities: -Experience in cybersecurity or IT infrastructure, with 2+ years hands-on Splunk engineering -Good experience in Splunk Search Processing Language (SPL) for creating complex queries, dashboards, alerts, and reports -Good experience in creating, testing, and tuning detection content for security use cases -Experience in onboarding and parsing logs from various sources (e.g., firewalls, EDRs, cloud platforms, applications) -Experience in data models (CIM), field extractions (regex), and knowledge objects (lookups, macros, tags) -Experience in designing and optimizing index structures, data retention policies, and storage performance -Ability to work with stakeholders from security operations, threat intel, and infrastructure teams -Strong documentation, version control, and lifecycle management for detection rules and dashboards -Experience integrating SOAR platforms with Splunk (e.g., Splunk SOAR, XSOAR) -Familiarity with Splunk Enterprise Security (ES) and its correlation framework -Exposure to MITRE ATT&CK mapping for content standardization Professional & Technical Skills: -Design, implement, and maintain search queries, correlation rules, and dashboards aligned with business and threat requirements -Tune existing alerts and rules to reduce false positives and improve detection fidelity -Map detection content to frameworks such as MITRE ATT&CK and compliance standards -Onboard new log sources across endpoints, cloud, infrastructure, and applications -Monitor log sources reporting into Splunk SIEM and identify log sources that fail to report in accordance with the security operation runbooks -Log source parsing issues troubleshooting and resolution. -Write and maintain custom field extractions, transforms, and other configurations -Optimize searches, reduce duplication, and ensure compliance with search head clustering best practices -Build real-time and scheduled dashboards to support SOC, compliance, and leadership visibility -Use lookups, macros, and scheduled reports to enrich alerts and enable decision-making -Participate in use case governance processes and maintain runbooks/playbooks -Review and approve content changes submitted by junior team members -Strong foundational understanding of security operations, threat landscapes, and log analysis -Excellent written and verbal communication skills for working with both technical and business stakeholders -Provide Splunk SIEM and SOAR (Tines/ Palo Alto XSOAR) support along with coordinating with Vendor when required. -Splunk SIEM: Rule creation, anomaly detection, ATT&CK mapping -SOAR: Playbook customization, API integrations, dynamic playbook logic -Threat Intelligence: TTP mapping, behavioral correlation -Splunk SIEM: Parser creation, field extraction, correlation rule design -Scripting: Python, regex, shell scripting for ETL workflows -Data Handling: JSON, syslog, Windows Event Logs -Splunk SIEM Detection Engineering, Content development and platform support -EXp in SOC including 2+ in SIEM Content Engineering /Platform Support. Additional Information: - The candidate should have minimum 3 years of experience in Security Information and Event Management (SIEM). - This position is based at our Bengaluru office. - A 15 years full time education is required.

Similar Jobs

GoMotive - Regional Vice President, Strategic Networks

GoMotive

United States (Remote)
3 Months ago
Lytx,  Inc  - Channel Sales Leader, Americas

Lytx, Inc

United States (Remote)
1 Month ago
storytq - Lead Backend Software Engineer - UK

storytq

United Kingdom (Remote)
3 Weeks ago
C3 IoT - Software Engineer - Early Professional

C3 IoT

Guadalajara, Jalisco, Mexico (On-Site)
1 Month ago
Veeam Software - Territory Manager

Veeam Software

Seoul, South Korea (On-Site)
3 Months ago

Get notifed when new similar jobs are uploaded

Similar Skill Jobs

Mixpanel - Account Executive, Mid-Market

Mixpanel

New York, New York, United States (Hybrid)
1 Month ago
Arketa - Director, B2B Revenue Operations

Arketa

New York, United States (On-Site)
1 Month ago
velotio technologies  - Senior DevOps Engineer

velotio technologies

Pune, Maharashtra, India (Remote)
2 Months ago
luxsoft - Data Engineer

luxsoft

Poland (Remote)
6 Months ago
Cognite - Head of Events & Field Marketing

Cognite

Phoenix, Arizona, United States (Hybrid)
2 Months ago
USE Insider - Technical Support Specialist - Brazil

USE Insider

State Of São Paulo, Brazil (Hybrid)
3 Weeks ago
Canva - Marketing Automation Lead

Canva

Austin, Texas, United States (On-Site)
2 Months ago
Zscaler - Senior Full Stack Engineer (Avalor)

Zscaler

Tel Aviv-Yafo, Tel Aviv District, Israel (Hybrid)
3 Weeks ago
Help Scout - Customer Enablement Lead

Help Scout

Boston, Massachusetts, United States (Remote)
1 Month ago
CGS Carrers - Senior Frontend Engineer | PRODUCT R&D, INNOVATION & OWNERSHIP

CGS Carrers

Indonesia (Remote)
3 Weeks ago

Get notifed when new similar jobs are uploaded

Jobs in Bengaluru, Karnataka, India

Qualcomm - Senior Staff Engineer - Software/Firmware Test Automation

Qualcomm

Bengaluru, Karnataka, India (On-Site)
2 Months ago
Lightcast - Dutch Language Linguist (India)

Lightcast

Chennai, Tamil Nadu, India (Remote)
1 Month ago
Capgemini - Test Automation Engineer

Capgemini

Pune, Maharashtra, India (On-Site)
2 Months ago
Capgemini - Java Developer

Capgemini

Bengaluru, Karnataka, India (On-Site)
2 Months ago
PhonePe - Decision Scientist

PhonePe

Bengaluru, Karnataka, India (On-Site)
1 Month ago
PwC - UI developer

PwC

Chennai, Tamil Nadu, India (On-Site)
10 Months ago
ConverseNowAI - Sr QA Engineer

ConverseNowAI

Bengaluru, Karnataka, India (On-Site)
1 Year ago
SimpliSafe - Sprinklr Solutions Architect

SimpliSafe

India (On-Site)
1 Month ago
luxsoft - Senior Hogan Tester

luxsoft

India (Remote)
2 Months ago
HCL Tech - Senior Analyst

HCL Tech

Noida, Uttar Pradesh, India (On-Site)
2 Months ago

Get notifed when new similar jobs are uploaded

Similar Category Jobs

Looks like we're out of matches

Set up an alert and we'll send you similar jobs the moment they appear!

About The Company

Accenture is a global professional services company with leading capabilities in digital, cloud and security.Combining unmatched experience and specialized skills across more than 40 industries, we offer Strategy and Consulting, Technology and Operations services, and Accenture Song— all powered by the world’s largest network of Advanced Technology and . Accenture helps organizations deliver on their promises to stakeholders and provide exceptional value. They help to improve the way that the world works and lives.

Gurugram, India (On-Site)

Bengaluru, Karnataka, India (On-Site)

Bengaluru, Karnataka, India (On-Site)

Noida, Uttar Pradesh, India (On-Site)

Gurugram, Haryana, India (On-Site)

Navi Mumbai, Maharashtra, India (On-Site)

Noida, Uttar Pradesh, India (On-Site)

Navi Mumbai, Maharashtra, India (On-Site)

Gurugram, Haryana, India (On-Site)

Gurugram, Haryana, India (On-Site)

View All Jobs

Get notified when new jobs are added by Accenture

Level Up Your Career in Game Development!

Transform Your Passion into Profession with Our Comprehensive Courses for Aspiring Game Developers.

Job Common Plug