Architect (Threat Detection & Incident Response) jobs in United States
cer-icon
Apply on Employer Site
company-logo

Mutual of Omaha · 1 day ago

Architect (Threat Detection & Incident Response)

positionOmaha, NE
timeFull-time
remoteOnsite
senioritySenior Level
money$130K/yr - $165K/yr

Mutual of Omaha is hiring an Architect to support their TDIR team. In this role, you will design and evolve the enterprise detection and response architecture to protect the organization from modern threats and improve incident response workflows across various environments.

Auto InsuranceCommercial InsuranceFinancial ServicesHealth InsuranceInsuranceLife InsuranceProperty Insurance
badNo H1Bnote

Responsibilities

Design and oversee the implementation of a comprehensive threat detection architecture, integrating SIEM,EDR, DLP, CNAPP, and NDR to ensure high-fidelity alerting and visibility
Develop strategies for the Exposure Management team, utilizing infrastructure vulnerability/configuration management and data security tools to reduce attack surface risks
Architect and optimize detection engineering to ensure efficient log collection, parsing normalization, and routing to SIEM and UEBA for advanced behavioral analysis
Work closely with other Security Architect II, III, and IV roles to ensure team objectives are solutioned in alignment with division initiatives

Qualification

Threat detection architectureCloud security architectureDetection engineeringSOAR integrationFramework fluencyCertifications CISSPCertifications GIACMentoringCommunication

Required

A strong work ethic and desire to contribute. Self-motivated, problem solver, takes initiative and look for ways to improve and achieve more for the team
SOAR & case management integration experience (e.g., playbook orchestration, triage workflows, ticketing integrations) to accelerate incident handling and automation
Cloud & platform security architecture skills: AWS security patterns (identity, network, workload protection, logging), M365 security ecosystem integration, and identity driven signal correlation
Detection engineering proficiency : event schemas, parsing/normalization, hunting & query languages, and scripting/automation to build, test, and maintain detections and enrichments
Mentoring & communication : experience guiding cross functional teams, mentoring engineers, and presenting complex architectures and risk tradeoffs to technical and business stakeholders
You promote a culture of diversity and inclusion, value different ideas and opinions, and listen courageously, remaining curious in all that you do
Able to work remotely with access to a high-speed internet connection and located in the United States or Puerto Rico

Preferred

Certifications : CISSP, ISSAP, and relevant GIAC (e.g., GCIH, GCDA, GMON)
Framework fluency: MITRE ATT&CK & D3FEND, NIST CSF/80053, and CIS Controls; ability to translate framework requirements into practical controls, coverage maps, and KPIs
Proven delivery of architecture artifacts (HLD/LLD, threat models, data flow diagrams), performance/cost optimization of logging pipelines, and continuous detection coverage improvement

Benefits

Work-life balance with vacation, personal time and paid holidays.

Company

Mutual of Omaha

twittertwittertwitter
Glassdoor4.0
company-logo
Mutual Of Omaha is a mutual insurance and financial services company helping clients achieve their financial goals.
dateFounded in 1909
location
Omaha, Nebraska, USA
people-size1001-5000 employees
web-link
http://www.mutualofomaha.com

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
David A. Diamond
EVP, CFO and Treasurer (Retired)
linkedin
leader-logo
Brian Poppe
SVP, Income and Wealth Planning
linkedin

Recent News

PR Newswire
Guardian, Nationwide and Prudential Lead Corporate Insight's 14th Annual Life Insurance Digital Experience Awards
2026-01-16
Business Wire
Stacy Scholtz Named Chief Operating Officer at Mutual of Omaha
2025-12-24
Business Wire
Mutual of Omaha Launches Leave Planning Tool for Group Insurance Customers
2025-11-15
Company data provided by crunchbase