MSS Senior Lead

This senior-level role is responsible for delivering high-impact solutions, mentoring teams, and contributing to the development of cybersecurity services and client relationships.

• SIEM Architecture and Integration Design:
  Lead the design and architecture of scalable, secure, and resilient SIEM integration solutions tailored to different environments. Ensure alignment with business objectives, compliance requirements, and threat detection strategies.
• Strategic Log Source Onboarding:
  Define and oversee the onboarding strategy for diverse log sources – network, endpoint, identity, cloud, OT – ensuring data quality, normalization, and alignment with detection use cases.
• MDR Enablement and Advisory:
  Architect and guide the integration of assets and telemetry into MDR platforms, ensuring high‑fidelity alerting, visibility, and operational readiness.
• Advanced Parsing and Data Modeling:
  Design and govern parsing logic, field extractions, and normalization frameworks to support unified data models and enhance detection capabilities.
• Automation Architecture:
  Architect automation frameworks and reusable scripts to streamline onboarding, enrichment, health monitoring, and data transformation processes.
• Infrastructure Hardening and Security Engineering:
  Define and enforce security best practices for log collection infrastructure, including agents, collectors, and data transport mechanisms.
• Data Quality Assurance and Validation Frameworks:
  Establish automated validation routines and monitoring dashboards to ensure data integrity, completeness, and performance across ingestion pipelines.
• Pipeline Optimization and Performance Tuning:
  Lead continuous improvement initiatives to reduce noise, enhance relevance, and optimize parsing and indexing performance.
• Security Use Case Alignment:
  Collaborate with SOC, threat detection, and compliance teams to ensure telemetry supports active use cases, investigations, and regulatory needs.
• Thought Leadership and Continuous Innovation:
  Stay ahead of industry trends in logging, detection engineering, and automation. Drive innovation by evaluating and integrating emerging data sources and technologies.
• Client Handling and Communication:
  Act as the primary technical point of contact during log onboarding activities, coordinating directly with clients to gather requirements, guide them through onboarding steps, address technical queries, provide timely updates, and ensure a smooth and professional engagement throughout the onboarding lifecycle.

• Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or a related field.
• 6 years of experience in cybersecurity, including consulting or advisory roles.
• Deep understanding of SIEM and XDR secure architectures and industry best practices.
• Proven experience onboarding and integrating with MDR or SOC‑as‑a‑Service platforms.
• Deep understanding of log formats such as Syslog, JSON, CEF, and core network protocols.
• Strong scripting skills in Python, Bash, Power Shell, or similar for automation and data parsing.
• Familiarity with system hardening and secure configuration standards.
• Expertise in security telemetry across endpoints, cloud, identity, and network layers.
• Hands‑on experience with automation orchestration frameworks and security tool integrations.
• Relevant certifications in SIEM, scripting, or cybersecurity are highly valued.
• Excellent analytical, troubleshooting, and communication abilities.
• Capable of managing priorities and collaborating cross‑functionally in dynamic environments.
• Deep knowledge of cybersecurity frameworks, strategic thinking, innovations, Leadership Employee.