Security Architect – Consultant SAC 26-04547

Job Title: Security Architect Consultant

Location: Remote (Columbia South Carolina)/(Occasional on-site support can be needed local candidates are preferred)
Duration: 12 Months (Possible Extension)

Job Summary:

The Consultant will serve as a Detection Engineer within an enterprise Information Security team. This role focuses on developing tuning and maintaining detection capabilities within a centralized monitoring environment. The consultant will collaborate with stakeholders to enhance threat detection coverage improve security operations and support adoption of centralized security services.

Key Responsibilities:

• Review analyze and tune existing detection rules within the SIEM environment
• Perform gap analysis to identify missing detection coverage
• Develop and implement detection rules to address identified gaps
• Monitor threat intelligence sources and translate insights into actionable detection use cases
• Collaborate with SOC analysts and threat hunters to enhance detection capabilities
• Document processes runbooks and troubleshooting procedures for security operations and automation workflows
• Coordinate with engineering SOC teams and stakeholders to meet program objectives
• Support dashboard creation reporting and continuous improvement efforts

Required Skills:

• Proven experience in detection engineering and rule development/tuning
• Strong scripting and automation skills (Python Bash PowerShell or similar)
• Experience working with SIEM platforms and security monitoring tools
• Knowledge of detection frameworks and languages (e.g. Sigma YARA)
• Understanding of Windows and Linux system artifacts
• Experience supporting large-scale or enterprise IT environments
• Strong communication and stakeholder engagement skills

Preferred Skills:

• Experience with advanced security analytics and automation platforms
• Familiarity with MITRE ATT&CK framework
• Experience in multi-tenant or enterprise service environments
• Experience with dashboarding reporting and visualization tools
• Prior experience in multi-agency or large enterprise security programs
• Local to or near Columbia South Carolina (preferred)

Education & Certifications:

Required:

• Bachelors degree in Information Technology Cybersecurity or related field
• OR equivalent combination of education and relevant experience
• 5 years of experience supporting enterprise IT systems and deployments

Preferred:

• Advanced security certifications (e.g. CISSP CISA CISM or equivalent)
• Additional certifications such as CEH OSCP GPEN
• Vendor-specific certifications in detection engineering or security platforms

Work Environment:Remote role with preference for candidates available for occasional on-site support

For more details reach at