subject matter expert (SME)

Job Description : Cybersecurity Solutions Deployment SME (Contract)

Position Title : Subject Matter Expert (SME) – Cybersecurity Solutions Deployment Contract

Job Purpose :

The Cybersecurity Solutions Deployment SME will lead the successful implementation of critical cybersecurity solutions, including Cloud-Native Application Protection Platform (CNAPP), Breach and Attack Simulation (BAS), and Secure Access Service Edge (SASE). The SME will provide expert guidance, ensure adherence to timelines, align with organizational objectives, and facilitate seamless project execution through collaboration with internal and external stakeholders.

Key Accountabilities and Responsibilities :

Technical Deployment Responsibilities :

1. Cloud-Native Application Protection Platform (CNAPP) :

o Assess and document the organization's cloud environment to determine readiness for CNAPP integration.

o Configure and deploy CNAPP solutions to provide cloud workload protection, compliance, and visibility.

o Conduct validation tests to ensure accurate reporting of vulnerabilities, misconfigurations, and compliance gaps.

2. Secure Access Service Edge (SASE) :

o Oversee the deployment of SASE components, including zero-trust network access (ZTNA), secure web gateways (SWG), and public and private access.

o Ensure integration with existing infrastructure, such as identity and access management (IAM) systems and endpoint security tools.

o Optimize SASE configurations for scalability, performance, and compliance.

3. Cyber Resiliency / Immutable Storage :

o Lead the deployment of immutable storage solutions to enhance data integrity and cyber resiliency.

o Design and implement backup and recovery strategies that leverage immutable storage for critical data.

o Collaborate with IT and cybersecurity teams to integrate immutable storage into existing workflows and disaster recovery processes.

o Ensure compliance with best practices and organizational policies for data protection and availability.

o Perform validation tests to ensure immutability and accessibility of stored data during potential cyber incidents.

4. SIEM, SOAR and UEBA :

o Platform Installation and Baseline Configuration : Deploy and configure the SIEM, SOAR, and UEBA components across primary and secondary environments, ensuring adherence to security hardening guidelines, redundancy, and scalability best practices.

o Data Source Integration and Normalization : Onboard and validate ingestion from prioritized log sources (e.g., firewalls, servers, EDR, cloud services, identity systems) ensuring parsing, normalization, and enrichment are correctly mapped for analytics and correlation.

o Use Case and Playbook Development : Implement an initial set of SIEM detection rules, SOAR automation playbooks, and UEBA baselines aligned to critical business risks, MITRE ATT&CK coverage, and compliance requirements.

o Monitoring, Alerting, and Health Dashboards : Configure monitoring and operational dashboards for log ingestion health, alert fidelity, SOAR automation execution, and UEBA anomaly scores to support MSSP oversight and reporting needs.

o Knowledge Transfer and Operational Handover : Provide detailed runbooks, configuration documentation, operational workflows, and conduct knowledge transfer sessions to the MSSP to ensure a seamless transition for day-to-day SOC operations.

Project Management Office (PMO) Activities :

• Develop and maintain comprehensive project plans, outlining milestones, deliverables, resource allocation, and timelines for CNAPP, BAS, cyber resiliency / immutable storage and SASE deployments.
• Establish a regular cadence of project status reviews with stakeholders to track progress, identify risks, and ensure alignment with organizational objectives.
• Coordinate with internal teams, vendors, and third-party implementation partners to meet project goals.
• Prepare detailed documentation, including deployment plans, training materials, and post-implementation guidelines.
• Conduct post-project reviews to assess outcomes, lessons learned, and opportunities for improvement.

Key Deliverables :

Knowledge, Skills, and Experience Required :

Technical Skills :

o CNAPP solutions such as SysDig, Wiz, or Sentinel One (Ping Safe).

o SSE (Secure Service Edge) solutions like Zscaler, Cisco, Microsoft or Netskope.

o Cyber resiliency / immutable storage like Commvault, Veeam, Cohesity, or Rubrik.

o Moden converged SIEM+SOAR+UEBA platforms like Splunk, Securonix, LogRythm, QRadar, etc.

Project Management Skills :

Soft Skills :

Experience :

Financial and Non-Financial Dimensions :

Operating Network :

Skills Required

Veeam, SOAR, Zscaler, Iso 27001, Ms Project, Commvault, Siem, cohesity , Cisco, Microsoft, Splunk, Qradar