Description

Description:

  • Lead the design and implementation of a comprehensive data lake and data fabric solution on AWS, specifically tailored for security data streams to enhance threat detection, investigation, and response.
  • Develop and maintain efficient, high-throughput data ingestion pipelines from diverse sources, including logs, telemetry, and threat intelligence feeds, into the data lake.
  • Work closely with the SIEM and SOAR teams to ensure seamless integration of data feeds into the SIEM platform (e.g., Splunk, Elastic, or similar), supporting automated alerting, analysis, and response capabilities.
  • Design and implement data storage strategies for both structured and unstructured data, ensuring data is organized, queryable, and secure. Optimize for performance, cost-efficiency, and scalability.
  • Ensure that all data solutions comply with relevant security policies, regulations (e.g., GDPR, CCPA), and industry standards to protect sensitive data and support governance requirements.
  • Continuously optimize data pipelines, storage, and query performance to handle large-scale security data flows with minimal latency.
  • Work closely with security analysts, data engineers, cloud engineers, and DevOps teams to ensure that the data architecture supports both immediate and long-term security analytics goals.
  • Create comprehensive architecture documentation, data flow diagrams, and runbooks. Establish best practices for data handling, security, and performance tuning.
  • Stay up-to-date with the latest trends in cloud data technologies, security analytics, and threat intelligence to continually evolve and improve the data architecture.


Requirements:

  • Proven experience (5+ years) in architecting and implementing data solutions on AWS (e.g., Amazon S3, Redshift, Athena, Kinesis, Lambda).
  • Strong background in cloud data architecture, with expertise in building scalable data lakes, data fabric, or similar data ecosystems.
  • Experience working with SIEM (e.g., Splunk, Elastic, or QRadar) and SOAR platforms (e.g., Palo Alto Cortex XSOAR, IBM Resilient).
  • Hands-on experience with data ingestion, ETL processes, and data integration tools.
  • Familiarity with security-focused data workflows, including log management, threat intelligence, and incident response.
  • Bachelor’s or Master’s degree in Computer Science, Information Systems, Cybersecurity, or a related field.

Education

Any Graduate