Security Architect – Consultant - SAC 26-04547

Job Title: Security Architect – Consultant

Location: Remote (Columbia, South Carolina)/(Occasional on-site support can be needed local candidates are preferred)
Duration: 12 Months (Possible Extension)

Job Summary:

The Consultant will serve as a Detection Engineer within an enterprise Information Security team. This role focuses on developing, tuning, and maintaining detection capabilities within a centralized monitoring environment. The consultant will collaborate with stakeholders to enhance threat detection coverage, improve security operations, and support adoption of centralized security services.

Key Responsibilities:

• Review, analyze, and tune existing detection rules within the SIEM environment
• Perform gap analysis to identify missing detection coverage
• Develop and implement detection rules to address identified gaps
• Monitor threat intelligence sources and translate insights into actionable detection use cases
• Collaborate with SOC analysts and threat hunters to enhance detection capabilities
• Document processes, runbooks, and troubleshooting procedures for security operations and automation workflows
• Coordinate with engineering, SOC teams, and stakeholders to meet program objectives
• Support dashboard creation, reporting, and continuous improvement efforts

Required Skills:

• Proven experience in detection engineering and rule development/tuning
• Strong scripting and automation skills (Python, Bash, PowerShell, or similar)
• Experience working with SIEM platforms and security monitoring tools
• Knowledge of detection frameworks and languages (e.g., Sigma, YARA)
• Understanding of Windows and Linux system artifacts
• Experience supporting large-scale or enterprise IT environments
• Strong communication and stakeholder engagement skills

Preferred Skills:

• Experience with advanced security analytics and automation platforms
• Familiarity with MITRE ATT&CK framework
• Experience in multi-tenant or enterprise service environments
• Experience with dashboarding, reporting, and visualization tools
• Prior experience in multi-agency or large enterprise security programs
• Local to or near Columbia, South Carolina (preferred)

Education & Certifications:

Required:

• Bachelor’s degree in Information Technology, Cybersecurity, or related field
• OR equivalent combination of education and relevant experience
• 5+ years of experience supporting enterprise IT systems and deployments

Preferred:

• Advanced security certifications (e.g., CISSP, CISA, CISM or equivalent)
• Additional certifications such as CEH, OSCP, GPEN
• Vendor-specific certifications in detection engineering or security platforms

Work Environment: Remote role with preference for candidates available for occasional on-site support

For more details reach at resumes@navitassols.com.