Cybersecurity/Architect Specialist

WE ARE HIRING!

We are looking for a Cybersecurity/Architect Specialist to join our remote project in a Construction company. The ideal candidate will have deep expertise in SIEM, SOC (Security Operations Center) and IAM (Identity and Access Management), with key expertise in cybersecurity matters, especially architecture.

Requirements:

• Strong understanding of SIEM (Security Information and Event Management) tools (e.g., Splunk, ArcSight, QRadar).

• Knowledge of log management and systems for integrating different log sources (syslog, SNMP, etc.).

• Familiarity with cyber defense tools (e.g., firewalls, EDR, IDS/IPS).

• Expertise in automation tools such as SOAR (Security Orchestration, Automation, and Response).

• Experience with incident response protocols and frameworks (e.g., NIST, SANS).

• Knowledge of threat intelligence feeds and integration with SOC tools.

• Ability to evaluate and improve SOC performance metrics (e.g., mean time to detect (MTTD), mean time to respond (MTTR)).

• Deep experience with IAM solutions, particularly Microsoft Entra ID and related technologies (e.g., Azure AD, ADFS).

• Expertise in Privileged Access Management (PAM) tools (e.g., CyberArk, BeyondTrust).

• Understanding of access control models (RBAC, ABAC) and designing secure, scalable architectures.

• Knowledge of identity governance and compliance requirements (e.g., SOX, GDPR, HIPAA).

• Strong skills in security protocols related to identity (e.g., SAML, OAuth, OpenID Connect).

• Ability to conduct regular audits and ensure compliance with organizational and regulatory standards.

Seniority: Senior/Expert > 6 years (experience with similar position)

About the project and tasks :

Tasks can be broken down based on the two main domains mentioned: SOC (Security Operations Center) and IAM (Identity and Access Management).

The work at hand will be that of a "solution architect" for different cybersecurity projects. In SOC mostly (log ingestion, cyberdefense solutions integrations, automation...) and also IAM domains (Entra ID hardening, Privilege account management...).