Cybersecurity Architect (Threat Intelligence and Security Integration) @ phia, LLC | Jobright.ai
JOBSarrow
RecommendedLiked
0
Applied
0
External
0
Cybersecurity Architect (Threat Intelligence and Security Integration) jobs in Merrifield, VA
Be an early applicantLess than 25 applicants
company-logo

phia, LLC · 2 days ago

Cybersecurity Architect (Threat Intelligence and Security Integration)

ftfMaximize your interview chances
Cyber SecurityInformation Technology
badNo H1BnoteU.S. Citizen OnlynoteSecurity Clearance Requirednote

Insider Connection @phia, LLC

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

Assist with intgration of Analyst1 and other Threat Intelligence Platforms (TIPs) with other security and operation tools such as ServiceNow, Armis, Sentinel One, SIEM, EDR, IDS/IPS, and other network security tools to enhance threat detection and response capabilities.
Validate data is received by Analyst1 from multiple tools including but not limited to ServiceNow, Armis, and Sentinel One.
Utilize automation opportunities to streamline threat intelligence workflows and improve incident response times.
Ensure seamless integration with existing security infrastructure, including endpoint security, firewalls, and SOAR platforms.
Develop and maintain detailed System Security Concept of Operations (ConOps) documents that outline the operational procedures and guidelines for the security architecture.
Align the security architecture with the overall business and technology strategy of the organization, ensuring it balances business requirements with information and cybersecurity needs.
Plan, design, build, test, and implement robust security architectures for all IT projects.
Perform vulnerability testing, risk analyses, and security assessments to ensure the efficacy of the security designs.
Test, evaluate, and verify hardware and software to ensure systems and architecture are consistent with cybersecurity architecture guidelines and requirements.
Identify critical system capabilities and business functions that require enhanced security measures and prioritize them based on risk and impact on the organization.
Conduct regular security reviews to identify gaps in the security architecture and determine the effectiveness of the current security design.
Recommend changes or enhancements as necessary based on security reviews.
Assist in configuring and re-configuring security tools to ensure they align with the overall security architecture.
Use threat intelligence to optimize the configuration of these tools and improve their effectiveness.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Threat Intelligence PlatformsSIEM systemsEndpoint Security ServicesMITRE ATT&CK FrameworkIntrusion Detection SystemsIntrusion Prevention SystemsNetwork SecurityHost Malware DetectionWeb Security TechnologiesEmail Security TechnologiesAI in Security OperationsMachine Learning in SecurityCompTIA Net+CompTIA A+CompTIA Security+Certified Testing EngineerCertified Ethical HackerCISSPCybersecurity Operations CenterSecurity FrameworksSecurity Tool ConfigurationSecurity ArchitectureVulnerability TestingRisk AnalysisSecurity Assessments

Required

5+ years of experience with SIEM systems, MITRE ATT&CK Framework, Endpoint Security Services, and the onboarding and implementation of various security tools.
Proven experience in analyzing alerts from Cloud, SIEM, and EDR tools, and in the alerts tuning process.
Familiarity with cybersecurity operation center functions and experience configuring and re-configuring security tools.
Experience with security frameworks and the ability to interpret use cases into actionable monitoring solutions.
Strong Working Knowledge of Security Information and Event Management (SIEM) systems.
Strong Working Knowledge of Intrusion Detection/Prevention Systems (IDS/IPS).
Strong Working Knowledge of Network and Host Malware Detection and Prevention.
Strong Working Knowledge of Web/Email Gateway Security Technologies.
Strong Working Knowledge of security tools and threat intel platform integration.
Strong Working Knowledge of utilization of available Artificial Intelligence (AI) and Machine Learning (ML) opportunities to enhance security operations.
U.S. Citizenship required.
Ability to obtain Public Trust (or higher) government clearance.

Preferred

Bachelor’s Degree in an engineering or cyber discipline
CompTIA Net+, A+, Security+
Certified Testing Engineer (CPTE)
Certified Ethical Hacker (CEH)
Certified Information System Security Professional (CISSP)

Benefits

Comprehensive medical insurance to include dental and vision
Short Term & Long-Term Disability
401k Retirement Savings Plan with Company Match
Tuition and Professional Development Assistance
Flex Spending Accounts (FSA)

Company

phia, LLC

twittertwittertwitter
company-logo
phia LLC is a Northern Virginia based, 8a certified small business that was established in 2011.

Funding

Current Stage
Early Stage

Leadership Team

T
Truong Dang
CEO
linkedin
Company data provided by crunchbase
logo

Orion

Your AI Copilot