Microsoft Sentinel Architect

The Company

Every day, NuHarbor Security improves the cybersecurity of our clients by making it stronger and easier to understand. Our comprehensive suite of security services, from strategic advising to 24-hour monitoring and management, provide an organizational view of security that is focused on results and recommendations that are valuable for both business and technical leaders. We're growing quickly because our clients, and the general market, are looking for these outcomes and for the data it gives them to explain, promote, and justify, their security investment and mission.

The Role

As a Sentinel/XDR Security Deployment Architect at NuHarbor Security, you play a pivotal role in designing and implementing advanced SIEM solutions using both Microsoft Sentinel and Splunk platforms. You will leverage your deep expertise in cybersecurity, SIEM architecture, and complex problem-solving to drive initiatives to successful and timely conclusions. In this role, you will mentor engineers, collaborate with cross-functional teams, and engage with clients to ensure the highest standards of security architecture and implementation are met.

This role is a senior technical leader and a recognized expert in Sentinel Security technology with supporting experience in Splunk, providing the context to deliver valuable outcomes to our clients. Success will be defined by meaningful advancements and insights in the application of multi-SIEM capabilities to provide a single and manageable experience of security for NuHarbor operators and client managers and technologists.

What you'll do

The Deployment Architect will leverage built-in and third-party detections to catch the most common and widespread threats, built-in and community workbooks and playbooks to automate investigation and response, and DevSecOps practices like continuous deployment and infrastructure-as-code to build a highly efficient, near fully automated security program. They are responsible for influencing the direction of Sentinel Security Deployment Engineering, assisting management, architects, and other senior technical leaders to create strategic roadmaps, and driving priorities to meet various objectives.

• Lives by the NuHarbor corporate values:
  • Help Clients Win
  • Always Improve
  • Protect the House
• Design and Implementation:
  • Architect and implement SIEM solutions using Microsoft Sentinel and Splunk.
  • Develop and maintain SIEM deployment standards, policies, and procedures.
  • Ensure integration with various security tools and technologies.
• Security Monitoring and Incident Response:
  • Develop use cases, correlation rules, and alerting for threat detection, analysis, and response.
  • Collaborate with SOC teams to enhance detection and response capabilities.
• Performance Optimization:
  • Optimize SIEM performance through tuning and scaling.
  • Conduct regular health checks and maintenance activities.
• Mentorship and Training:
  • Mentor junior engineers and architects.
  • Provide training sessions and knowledge sharing on SIEM best practices.
• Client Engagement:
  • Work closely with clients to understand their security requirements.
  • Provide technical guidance and recommendations.
  • Participate in client meetings and presentations.
• Documentation and Reporting:
  • Maintain comprehensive documentation of SIEM configurations and changes.
  • Generate reports and dashboards for various stakeholders.

Your foundation. The requirements for this role:

• Bachelor's Degree and five (5) or more years in the Information Technology field.

• • Typical Degrees: Computer Science, Computer Engineering, Software Engineering or related field(s).
  • • In lieu of a degree, two (2) years of experience in a related technology field and relevant industry certifications are required.

• Minimum of 8 years of IT experience, Security or related experience
• Minimum 5 years security architecture/engineering experience in the Microsoft ecosystem, including AD and Azure
• Minimum 3 years of commercial experience implementing DevOps practices and tooling, such as CI/CD pipelines and Infrastructure-as-Code
• Hands on experience in Azure Architecture and working independently to manage related projects
  • Designing and deploying solutions in Azure at enterprise scale
  • Strong automation skills.

• In-depth knowledge of Microsoft Defender, Entra ID, Purview, and Sentinel.
• Strong understanding of security event logging, correlation, and alerting.
• Experience with scripting and automation (e.g., PowerShell, Python)
• Experience with Microsoft Azure IaaS/PaaS/SaaS services (Azure VMs, Azure Storage, Azure SQL, Azure CosmosDB, Azure App Services, etc.)
• Experience deploying infrastructure with Azure Resource Manager (ARM) and Terraform IaC tools.
• Experienced and comfortable in architecting highly available systems that utilize Azure-native platforms, horizontal & vertical scalability, load balancing, high availability, and geographical redundancy.

• Active Microsoft certifications in one or more of the following, acquired at least 1 or more years ago:
  • Microsoft Cybersecurity Architect Expert (SC-100)
  • Azure Solutions Architect Expert (AZ-305)

Additional capabilities that will differentiate you for this role:

• Minimum of 12 years of IT experience, Security or related experience
• Experienced in Azure monitoring tools & services (e.g., Azure Monitor, Azure Monitor for Containers, Application Insight, Azure Managed Grafana, Azure Advisor, Azure Cost Analysis)
• Experienced in database administration & management tools (SQL Server Management Studio, Azure Data Studio, etc.)
• Experience with Docker and Containers Orchestration (Azure Kubernetes Service and/or Azure Container Apps)
• Published articles or presentations within a security product or services company.
• Experience in a similar role within a security product or services company.

The Rewards

What you can expect:

• The engagement and support of company leadership who recognize the challenge of marketing a complex cybersecurity service in a chaotic market.
• An organization that recognizes and rewards employee commitment and contribution to our customers' satisfaction and success
• Growth in your career and capabilities as you help to chart a path to improving customer interactivity and service adoption.
• A collaborative and driven working environment in a rapidly growing company and market
• A fun and social working environment where you are encouraged to be your true self.

You can also expect competitive salary and benefits, including paid time to give back in your community and generous PTO.

We are purpose driven. We, as an organization, above anything else protect the house first and then help our customers win. If this sounds like the kind of organization you'd like to be a part of, we'd like to hear from you.

AAP/EEO Statement

The Equal Employment Opportunity Policy of NuHarbor Security is to provide a fair and equal employment opportunity for all associates and job applicants regardless of race, color, religion, national origin, gender, sexual orientation, age, marital status or disability. NuHarbor Security hires and promotes individuals solely based on their qualifications for the job to be filled.

NuHarbor Security believes that employees should be provided with a working environment which enables each associate to be productive and to work to the best of his or her ability. We do not condone or tolerate an atmosphere of intimidation or harassment based on race, color, religion, national origin, gender, sexual orientation, age, marital status, or disability. We expect and require the cooperation of all employees in maintaining a discrimination and harassment-free atmosphere.