Security Architect
Accenture
3 - 5 years
Mumbai
Posted: 9/9/2024
Job Description
Project Role : Security Architect
Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations.
Must have skills : Splunk Security Information and Event Management (SIEM)
Good to have skills : NA
Minimum 3 year(s) of experience is required
Educational Qualification : Bachelor or college degree in related field or equivalent work experience
Summary: As a Security Architect, you will be responsible for defining the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve documenting the implementation of the cloud security controls and transitioning to cloud security-managed operations using Splunk Security Information and Event Management (SIEM). Roles & Responsibilities: - Design and implement security solutions for cloud-based applications and infrastructure using Splunk Security Information and Event Management (SIEM). - Develop and maintain security policies, procedures, and standards for cloud-based environments. - Collaborate with cross-functional teams to ensure security controls are integrated into the cloud architecture. - Provide technical guidance and support to operations teams for cloud security-managed operations. - Stay updated with the latest advancements in cloud security and integrate innovative approaches for sustained competitive advantage. Professional & Technical Skills: Tool and Infrastructure Operations: Splunk Enterprise Platform Splunk Platform Skills: - Splunk platform issue identification, analysis, and escalation - Splunk log feed issue analysis (missing logs, devices not reporting, log latency) - Splunk maintenance and troubleshooting of onboarded log feeds (field extractions, event breaking) - Splunk platform, Content development, app configuration - Tuning / issue resolution for Splunk enterprise security use cases - Splunk platform and application upgrades and testing - Install, configure, and maintain Splunk infrastructure components, including indexers, search heads, forwarders, and deployment servers. - Design and implement Splunk data ingestion pipelines to collect, parse, and index log data from various sources, including servers, network devices, and applications. - Develop and maintain Splunk dashboards, reports, and alerts to provide actionable insights into system performance, security incidents, and operational trends. - Collaborate with cybersecurity analysts, IT operations teams, and other stakeholders to identify log sources and define logging requirements for monitoring and troubleshooting. - Optimize Splunk performance and scalability by tuning indexing settings, search queries, and data retention policies based on business needs and usage patterns. - Implement and manage Splunk security controls, including role-based access controls (RBAC), data encryption, and integration with authentication systems (LDAP, Active Directory). - Monitor Splunk infrastructure health and performance, proactively identifying and resolving issues to ensure high availability and reliability. - Develop and maintain documentation, including standard operating procedures (SOPs), best practices, and troubleshooting guides, to support Splunk operations and administration. - Provide training and support to end users and stakeholders on Splunk usage, capabilities, and best practices for log analysis and visualization. - Stay up-to-date with the latest Splunk features, updates, and industry trends, and recommend opportunities for leveraging Splunk to improve operational efficiency and security posture. * Excellent verbal, written, and organizational skills, including presentation experience Additional Information: - The candidate should have a minimum of 3 years of experience in Splunk Security Information and Event Management (SIEM). - The ideal candidate will possess a strong educational background in computer science, information technology, or a related field, along with a proven track record of delivering impactful security solutions. - This position is based at our Gurugram office.
Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations.
Must have skills : Splunk Security Information and Event Management (SIEM)
Good to have skills : NA
Minimum 3 year(s) of experience is required
Educational Qualification : Bachelor or college degree in related field or equivalent work experience
Summary: As a Security Architect, you will be responsible for defining the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve documenting the implementation of the cloud security controls and transitioning to cloud security-managed operations using Splunk Security Information and Event Management (SIEM). Roles & Responsibilities: - Design and implement security solutions for cloud-based applications and infrastructure using Splunk Security Information and Event Management (SIEM). - Develop and maintain security policies, procedures, and standards for cloud-based environments. - Collaborate with cross-functional teams to ensure security controls are integrated into the cloud architecture. - Provide technical guidance and support to operations teams for cloud security-managed operations. - Stay updated with the latest advancements in cloud security and integrate innovative approaches for sustained competitive advantage. Professional & Technical Skills: Tool and Infrastructure Operations: Splunk Enterprise Platform Splunk Platform Skills: - Splunk platform issue identification, analysis, and escalation - Splunk log feed issue analysis (missing logs, devices not reporting, log latency) - Splunk maintenance and troubleshooting of onboarded log feeds (field extractions, event breaking) - Splunk platform, Content development, app configuration - Tuning / issue resolution for Splunk enterprise security use cases - Splunk platform and application upgrades and testing - Install, configure, and maintain Splunk infrastructure components, including indexers, search heads, forwarders, and deployment servers. - Design and implement Splunk data ingestion pipelines to collect, parse, and index log data from various sources, including servers, network devices, and applications. - Develop and maintain Splunk dashboards, reports, and alerts to provide actionable insights into system performance, security incidents, and operational trends. - Collaborate with cybersecurity analysts, IT operations teams, and other stakeholders to identify log sources and define logging requirements for monitoring and troubleshooting. - Optimize Splunk performance and scalability by tuning indexing settings, search queries, and data retention policies based on business needs and usage patterns. - Implement and manage Splunk security controls, including role-based access controls (RBAC), data encryption, and integration with authentication systems (LDAP, Active Directory). - Monitor Splunk infrastructure health and performance, proactively identifying and resolving issues to ensure high availability and reliability. - Develop and maintain documentation, including standard operating procedures (SOPs), best practices, and troubleshooting guides, to support Splunk operations and administration. - Provide training and support to end users and stakeholders on Splunk usage, capabilities, and best practices for log analysis and visualization. - Stay up-to-date with the latest Splunk features, updates, and industry trends, and recommend opportunities for leveraging Splunk to improve operational efficiency and security posture. * Excellent verbal, written, and organizational skills, including presentation experience Additional Information: - The candidate should have a minimum of 3 years of experience in Splunk Security Information and Event Management (SIEM). - The ideal candidate will possess a strong educational background in computer science, information technology, or a related field, along with a proven track record of delivering impactful security solutions. - This position is based at our Gurugram office.
About Company
Accenture is a global professional services company that provides a broad range of services in strategy, consulting, digital, technology, and operations. Headquartered in Dublin, Ireland, Accenture operates in more than 120 countries and serves clients in various industries, including finance, healthcare, technology, and consumer goods. The company focuses on delivering innovative solutions and digital transformation services to help businesses improve efficiency, enhance performance, and drive growth. Accenture is known for its extensive use of technology and data analytics to solve complex business challenges and maintain a competitive edge in a rapidly changing market.
Services you might be interested in
One-Shot Campaign
Reach out to ideal employees in one shot!
The intelligent campaign for reaching out to the ideal audience to whom you can ask for help (guidance or referral).