.Net Architect

NET Architect

Sacramento, CA - onsite.

.NET Cloud Solutions Architect

The objective is development of the automation and technology of each involves, at minimum, both security and automation professionals. Security professionals are skilled at planning for, setup, administration, operation of SIEM and SOAR systems, plus the interpretation of telemetry output produced by each. Automation professionals have the software engineering skills for building the automation required for both SIEM and SOAR environments.

The project tasks and deliverables are:

1. Work with SOC security staff to help plan automation SIEM, SOAR and query resources that need to be constructed

2. Act as application architect in leading development of complex SIEM and SOAR automation

3. Lead development in “sprints” related to SIEM and SOAR

4. Build, test, and document cloud-based automation applications for SIEM and SOAR resources

5. Develop plan to expand coverage for the MITRE (Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK) Matrix for Enterprise, via SIEM and SOAR functions

6. Build, test, and document SQL and KQL queries and query applications

7. Build interface and data connections between security systems

8. Git repository maintenance for the applications and queries

9. Git repository

10. Where applicable, follow procedures for making Git repositories open-source

11. Code documentation, creates context diagrams at program initiation and updates as project evolves

12. Create and manage code repositories for application builds through the utilization of our current Continuous Integration/Continuous Delivery (CI/CD) pipeline methods

13. Participate in meetings, provide weekly and as-needed reports documenting how the billable hours were used, provide job estimates

14. Training for CDT staff with regards to the use and maintenance of applications developed and Git code maintenance

15. Serve as a consultant with regards to SIEM and SOAR