Senior Sentinel Architect

Overview

Conduct an "As Is" assessment of SOC operations, including platforms and tools such as Microsoft Sentinel. Review architecture, policies, infrastructure, servers, applications, logs, and KPIs to identify gaps and opportunities for improvement. Ensure alignment with industry standards such as NIST, MITRE, Magma, Defense in Depth, ISO 27001, SOC I, and SOC II. Provide technical consultation to enrich Microsoft Sentinel functionalities using best practices and expertise.

Evaluate integrations, use cases, playbooks, and automation solutions for optimization. Deliver strategic guidance to align SOC services with customer requirements and goals. Analyze existing capabilities and provide actionable recommendations to enhance SOC operations, including incident response and threat intelligence integration. Prepare comprehensive reports detailing observations, gaps, recommendations, and capability matrices. Collaborate with cross functional teams and technical consultants to validate SOC processes and integrations.

Mentor and guide team members in SOC assessment and Microsoft Sentinel optimization.

• 14+ years of experience in SOC operations, with extensive expertise in Microsoft Sentinel architecture.
• Proficiency in cybersecurity frameworks (e.g., NIST, ISO 27001) and industry standards.
• Strong analytical and strategic thinking skills with the ability to deliver high impact recommendations.
• Expertise in playbook design, use case development, and automation solutions.
• Exceptional leadership, communication, and collaboration abilities.