Cyber Security Architect

Key Responsibilities Cyber Security Security Monitoring Incident Response Monitor security s using SIEM EDR and XDR tools Investigate and respond to security incidents end-to-end including containment and remediation Lead post incident analysis and document lessons learned Threat Detection Threat Hunting Perform proactive threat hunting using logs endpoint telemetry and network data Develop and tune detection rules aligned with MITRE ATTCK Convert threat hunting findings into new detection use cases Vulnerability Exposure Management Conduct vulnerability scans and assess risk severity Track remediation with infrastructure and application owners Validate fixes and ensure closure within defined SLAs Security Engineering Hardening Implement and maintain security baselines for Windows Linux Active Directory O365 and cloud platforms Harden endpoints servers network devices and cloud workloads Support purple team and security validation exercises Security Tools Platforms Operate and tune tools such as SIEM SOAR Microsoft Sentinel Splunk EDR XDR Microsoft Defender CrowdStrike Firewalls IDSIPS WAF Cloud security platforms Governance Risk Compliance Support Support audits and compliance activities aligned to ISO 27001 NIST CSF PCI DSS and regional regulations Prepare security evidence reports and dashboards for management Documentation Reporting Maintain incident reports runbooks dashboards and operational metrics MTTD MTTR Provide executive level summaries of security posture and incidents Required Qualifications Experience 7-10 years in Cyber Security Operations or Incident Response roles Technical Skills Strong hands-on experience with SIEM EDR firewalls vulnerability management tools Knowledge of Windows Linux networking and cloud security concepts Frameworks MITRE ATTCK NIST ISO 27001 Optional Defender mail security DLP Imperva DAM Scripting Preferred PowerShell Python or KQL for automation and detection engineering Preferred Certifications CISSP CISM CISA GCIA GCIH GCED Microsoft SC200 AZ500 CompTIA Security CySA