Lead IT Security Architect - SIEM

Designation : Lead IT Security Architect

Experience : 10-15 Years

Location : Pune, India

Work Mode : Hybrid

A. Your Skills : B. Behaviors :

• 10 - 15 years of cybersecurity experience, with leadership in SIEM Architecture, SOC operations, threat detection, and incident response.
• Deep expertise in SIEM platforms, including Microsoft Sentinel, with a focus on log correlation, rule customization, and threat intelligence integration.
• Advanced proficiency in Microsoft security stack : Defender for Cloud, Defender for Endpoint, Defender for Identity, Defender for Cloud Apps, Office 365, Exchange, and Azure Active Directory.
• Skilled in onboarding diverse log sources, developing consolidated dashboards, and automating playbooks for continuous monitoring.
• Strong capability in simulating threat scenarios and mapping attack paths using MITRE ATT&CK, Red Teaming, and Purple Teaming methodologies.
• Hands-on experience with firewalls, IDS / IPS, anti-malware, vulnerability scanners and endpoint security tools.
• Solid understanding of Windows / Linux OS, cloud infrastructure, and evolving cyberattack techniques.
• Proven ability to correlate threat intelligence feeds with detection engineering to identify and mitigate advanced threats.
• Expertise in crafting high-fidelity detection rules and reducing false positives through AI powered anomaly detection.
• Excellent communicator and collaborator across cross-functional teams.
• Passionate about proactive cybersecurity, continuous learning, and building resilient security ecosystems.
• Highly collaborative with global cross-functional teams, with a focus on mentoring and guiding others toward shared security goals.
• Confident in expressing ideas, influencing decisions, and leading discussions that drive cybersecurity strategy forward.
• Open to learning and working with emerging technologies, while fostering a culture of continuous improvement and innovation.
• Agile mindset with adaptability to dynamic environments and evolving threat landscapes.
• Self-driven and proactive in identifying, prioritizing, and resolving complex security challenges with a leadership-oriented approach.

C. Role and Responsibilities :

IT Security Strategy Planning :

1. Collaborate closely with security leaders, including CISOs and senior stakeholders, to define cybersecurity strategy aligned with business objectives.

2. Contribute to the development of measurable security goals and roadmaps that enhance the organization's overall security posture.

SIEM Administration :

1. Provide ongoing support for SIEM Architecture, ensuring efficient log ingestion, parsing, and normalization to enhance threat visibility and detection capabilities.

2. Designed and customized automated playbooks and interactive dashboards in SIEM to meet specific security monitoring and incident response requirements.

Security Recommendation Implementation :

1. Leverage Microsoft Defender for Cloud and Defender security recommendations to assess and enhance the organization's global security posture.

2. Collaborate with cross-functional teams to implement prioritized security controls and hardening measures across cloud workloads and hybrid environments.

Security Tool Management :

1. Configure, monitor, and maintain security tools such as SIEM (Microsoft Sentinel), Defender for Cloud, antivirus solutions, and consolidated security dashboards.

D. Required Qualification :

E. Desirable Certifications :

(ref : hirist.tech)