We are currently seeking a Security Architect, to join the Security Architecture and Engineering team. In this role, you will be a part of a team that builds security products to protect the world's largest companies, governments, and millions of homes from advanced security threats. Your specific responsibility will be to architect, engineer and oversee the deployment, configuration and support of the Managed Security Services security infrastructure - to include the customer integration, management and monitoring systems and processes. We are looking for a skilled and driven security expert capable of working independently and as part of the team, to complete tasks assigned by her/his leadership and have excellent communications skills and experience in presenting technical issues to a wide variety of audiences
The Main Responsibilities
Develop Managed Security Services infrastructure architecture and drive the implementation through collaboration with the Product, Engineering and Operations organizations to implement future architectures.
Integrate knowledge and resources across technical disciplines and functional boundaries, to recommend strategy, advance technology and direct development of innovative security solutions.
Integrate the customer network and infrastructure into a complex and large Splunk Enterprise Security deployment, in support of the Security Operation center activities
Assist with the automation, deployment, integration, and testing of Security Operation Center systems and services to include the central management, performance monitoring, incident response, vulnerability scanning, etc.
Ensure the deployments meet requirements with respect to functionality, performance, scalability, and reliability while complying with company security standards and principles
Guide routine compliance and audit functions to ensure monitoring requirements of CenturyLink assets are satisfied.
Develop, modify and follow associated security operation center processes applicable to the role (eg change and outage management).
The candidate must be able to work collaboratively with diverse end users and a geographically distributed team
Lead architectural approval and security certification processes as needed.
Responsible for generating high quality technical documentation and configurations to support architecture and solution designs, handoffs and user training
Provide requirements, guidance, and vision to the vendor community in order to cultivate the appropriate combination of technology and feature capabilities to meet CenturyLink current and future architectural targets.
As a technical advisor, support customer solution designs and meetings to provide subject matter expertise when in-depth technical material is needed or to present the future-looking architecture roadmap.
Responsible for generating high quality technical documentation and configurations to support architecture and solution designs
What We Look For in a Candidate
Minimum of 8+ years of experience in a technical role, including 3+ years in a key security architectural design development
Undergraduate degree in Computer Science, Engineering, or related field; or equivalent experience
Confident and mature individual with a high degree of energy, enthusiasm and a can do attitude to achieve outstanding, timely, and quality results and operate at the highest levels of excellence and process efficiency.
Working experience in large service provider Managed Security Services organization developing and supporting the security infrastructure - with specific focus on Data Analytics, Event Log management, threat detection/prevention and asset intelligence systems.
Experience in building and supporting network and security Management, Monitoring and Incident response solutions
Experience with system, network, or security administration/engineering in a Unix-based environment
Strong networking experience to aid event collection and troubleshooting
Development of custom tools and programs based on specified requirements, including 3+ years development experience with Scripting languages (Python Preferred).
Experience in application development and understanding of common computing platforms, including Windows Servers, RedHat & Ubuntu Linux Servers
Experience working with various different types of APIs: REST, SOAP, etc.
Demonstrated working experience managing the Splunk event feed, indexing, processing and analytics infrastructure. Experience with managing Splunk SIEM infrastructure is preferred.
Strong communication, presentation and teamwork skills and prior work in a collaborative environment
Demonstrates Company's values, maintains a positive open demeanor, encourages different points of view; provides timely information; communicates context for business decisions; fosters teamwork and collaboration
Knowledge of security architecture design, including: Firewalls, Web Content Filtering, Intrusion Detection and Prevention (IDS/IPS) systems, Remote Network Access (IPsec VPN, SSL), Anti-Virus and Anti-Spam (AV/AS), Email and Messaging Security
Understanding of Integrated network architectures, cloud technologies, SD-WAN