Lead Cloud Security Architect (NDRSOC Focus)

Note: This is a remote role with possible contract to hire down the line. Candidate will be working remote while they are on contract on EST/CST timezone and looking for candidates who are currently local to one of Sapient office locations so that they can be onsite if they convert full time down the line but will be working remote as long as they are on contract.

Sapient has offices in:

• San Francisco CA
• Arlington VA
• Westminster CO
• Chicago IL
• Boston MA
• Birmingham MI
• Houston TX
• Atlanta GA
• Miami FL
• New York NY
• Minneapolis MN
• Los Angeles CA
• Seattle WA

Req #:
Title: Lead Cloud Security Architect (NDR/SOC Focus)
Client: SAPIENT RAZORFISH (End client : UHG)
Location: Atlanta GA - This position does not require candidates to work on-site. Please aim to find candidates who live close to a PS office in case they are converted over permanently.

Rate: 60-70/hr on W2
Duration: 6 months
Visa: USC & GC (EST/CST Hours)
Interview Process:

• 1-2 internal video interviews
• 1 client round

Submission Details Required

• Visa copy
• Name
• Contact Information: Phone Email
• LinkedIn Profile
• Current location
• Available to join
• Available for interview
• Rate
• Resume attached

Must have:

• Network Detection & Response (NDR) / Security Operations experience

• Corelight Zeek Suricata or Endace experience
• Python automation and API integration experience
• Grafana Prometheus and InfluxDB experience
• SOC / Incident Response experience
• TCP/IP packet capture and network traffic analysis knowledge
• Monitoring dashboards and alerting experience
• Docker and Kubernetes experience
• API authentication and integration experience
• GitHub Copilot / Microsoft 365 Copilot / GenAI tools experience

Required Qualifications: IT Engineer

We are seeking a skilled engineer to support our Network Detection & Response (NDR) operations and build a modern health monitoring system for our Corelight security platform. This role is ideal for someone who blends security operations experience with strong automation and monitoring skills.

Your Impact

• Support day to day operations of the NDR platform including sensor health data flow monitoring and alert handling.
• Build and maintain a platform health monitoring solution using Grafana Prometheus InfluxDB and API integrations.
• Develop automation scripts in Python to collect system and application health metrics.
• Create dashboards and alerts that provide real time visibility into system performance and uptime.
• Work with Security Operations Incident Response and Network teams to ensure timely detection and resolution of issues.

Required Qualifications

• Experience with network security tools ideally Corelight Endace Zeek or Suricata.
• Strong Python skills especially for automation and working with APIs.
• Hands on experience with monitoring and visualization tools such as Grafana Prometheus and/or InfluxDB.
• Solid understanding of general network concepts (TCP/IP traffic flow packet capture).
• Background in SOC NDR monitoring or security operations is highly desirable.
• Experience building dashboards alerts or custom data collectors.
• Familiarity with containerized environments (Docker Kubernetes).
• Knowledge of API authentication and data integration best practices.

Required AI Skills

All contractor resources are expected to demonstrate baseline proficiency in enterprise-approved AI tools as part of their day-to-day responsibilities. This includes but is not limited to:

• Consistent Use: Maintain a minimum of 90% weekly usage of AI tools such as GitHub Copilot Microsoft 365 Copilot and other GenAI platforms approved by the enterprise.
• Applied Productivity: Leverage AI tools to enhance coding documentation data analysis and decision-making workflows.
• Continuous