Security Architect

Summary

Join BlueVoyant as a Security Architect – Microsoft Technologies and contribute to complex Microsoft Sentinel SIEM and Microsoft M365 security deployments in customer environments. You will work on project implementations, coordinate data gathering, create SOC SIEM use cases, and define security reports. This role requires collaboration with various teams, including sales and day-2 operations. The ideal candidate possesses extensive experience in cybersecurity, Azure Cloud technologies, and Microsoft security solutions. Strong communication and scripting skills are essential. US citizenship is required.

Requirements

• At least 10 years of technical experience in cybersecurity field
• Ideal having working experience in any US State or Government agencies
• Proven experience with Azure Cloud technologies and Microsoft security solutions
• Hands-on experience in script development, preferably KQL scripts
• Very familiar with Microsoft security licensing
• Advanced knowledge and expertise of using SIEM technologies for event investigation
• Customer facing – strong communication skills
• Deployment experience in large/complex environments
• Valid US background check
• US citizenship required

Responsibilities

• Work on Microsoft Sentinel SIEM complex project implementations for various customers, starting with design and architecture, deployment and use case tune-up
• Coordinate evidence/data gathering and documentation and review Security Incident reports
• Create and develop new SOC SIEM use cases as per the customer requirements
• Define and assist in creation of operational and executive security reports and dashboards
• Participate in R&D activities across different parts of the organization
• Work on integration activities between M365 security tools and Azure Sentinel
• Be Managed Sentinel/Bluevoyant - customer key technical contact
• Responsible in managing delivery teams during Microsoft toolset rollout in customer environment
• Supporting BlueVoyant Sales team as senior pre-sales engineer for complex/enterprise opportunities
• Interact with BlueVoyant Day-2 team and responsible for transitioning customer-managed infrastructure into BlueVoyant SOC environment
• Delivering to customers Microsoft security workshops

Preferred Qualifications

• Advanced event analysis leveraging Microsoft Sentinel SIEM
• Advanced experience with Microsoft Defender security tools
• Hold Microsoft certifications
• Any security certifications, such as CISSP, CISM, CEH, SABSA
• Proficient in English