JOB REQUISITION Security Architect LOCATION SAN RAMON JOB DESCRIPTION The Security Architect team: • Designs high-level security programs to address business needs using industry frameworks, standards, and best practices. • Works with the business and technologists to understand the requirements of business and technology programs and projects. • Drives the secure design of security, business and technology systems using the standards. Manage security deliverables to vertical/business. • Investigates new security technologies for potential security roadmaps, in conjunction with the engineering teams. • Investigates new threats and how to mitigate them. • Develops processes, standards, policies, and workflows to better document security controls and continually improve them. As a SIEM Security Architect your specific responsibilities will include: Leads the development and technical implementation and design of Robert Half's SIEM strategy, Works with event consumers and event source owners to identify needs and opportunities for ingestion to the SIEM. Works with Leadership to prioritize the ingestion of log sources. Designs large-scale solutions for aggregating logs across various cloud platforms, SaaS applications, datacenters, etc. Serves as the primary lead SME point for SIEM platform issues Acts as highest point of escalation for the SIEM platform Provides cross-training and technical coaching to security engineers and analysts Develops processes and documentation for on-boarding log sources from new teams and environments Provide support to Security Engineering and Security Operations teams Normalizes, correlates, and maps log source events to categories based on the MITRE attack framework Develops and tunes actionable alerts and works with Security Operations Qualifications: Bachelor's degree in related field or equivalent experience. 8 years of professional experience in security analysis, development, engineering, and support in a large corporate setting, including: 5 years of experience mentoring and leading security engineers. CISSP, IBM QRadar, and AWS/Azure certifications desired. Experience working in a SCRUM Methodology. Experience with logs involving firewalls, IPS, WIDS, WAF, SIEM, DLP, RMS, vulnerability scanner, web proxy, endpoint security, etc. Experience with various SIEM's such as Splunk and Microsoft Sentinel Experience working in proof-of-concept based and exploratory product development. Experience with various full cycle software development methodologies, tools, and practices. Experience with securing cloud-based technology deployments and service offerings, to include SaaS, IaaS, PaaS. Experience as a primary technical lead in large security initiatives, to include all phases of a project's lifecycle. Experience with developing and maintaining strong working relationships with staff and leadership in addition to business teams and leadership Ability to gather, combine and document requirements effectively to propose secure solutions. Ability to perform fit/gap analysis based on requirements, create detailed and complex test plans and prioritize job responsibilities. Ability to create thorough and complex documentation and facilitate, conduct meetings, gather information and present status. Ability to use good judgment and think outside the box in addressing unique information security challenges. Ability to think independently and in team setting to ensure security issues are addressed in a manner consistent with security principles in mind. Ability to learn and research non-standard or new log source types and determine bare minimum Ability to relate to non-technical users and/or non-security focused technical users in user-friendly language Ability to manage multiple concurrent objectives or activities, and effectively make judgments in prioritizing and time allocation in a high-pressure environment Ability to work well with others, harness different skills and experience, and build a strong sense of team spirit Possess a security mindset and help instill in other team members. Assess challenges within the concept of overall organizational risk. At Robert Half, there’s more to us than what we do. Learn about our values and what it’s like to work for the largest specialized staffing firm in the world at our San Ramon, California, Corporate Services office. Take a look at roberthalf.com/corporate-office-video. Follow us on Twitter @RH_Corp_Jobs for Robert Half Corporate Services job openings and career and workplace news! Robert Half International Inc. is an Equal Opportunity Employer. M/F/Disability/Veteran As part of Robert Half’s Corporate Services facility employment process, any offer of employment is contingent upon successful completion of a background check. Robert Half is committed to being an equal employment employer offering opportunities to all job seekers, including individuals with disabilities. If you believe you need a reasonable accommodation in order to search for a job opening or to apply for a position, please contact us by sending an email to HRSolutions@roberthalf.com or call 1.855.744.6947 for assistance. In your email please include the following: The specific accommodation requested to complete the employment application. The location(s) (city, state) to which you would like to apply. JOB LOCATION CA SAN RAMON CORP ADDITIONAL LOCATION