Cybersecurity Architect:The cybersecurity architect is responsible for managing all aspects of the SIEM to include operations and maintenance for all lookup files, integrating security feeds, developing the alerting framework, developing the risk framework and the orchestration of all security devices. The role is also responsible for ensuring that data quality and that all data going into the SIEM conforms with the Common Information Model (CIM). The minimum qualifications are as follows:1. Must have a minimum of 7 years of experience in managing and architecting a large Splunk environment.2. Must have a detailed understanding of and at least 3 years of experience with Splunk Enterprise Security frameworks including: notable event, threat intelligence, risk, assets & identities.3. Must have at least 3 years of experience and extensive working knowledge of the Common Information Model (CIM).4. Must have a detailed understanding of all Splunk back-end configuration files.5. Must be proficient in Python programming.6. Experience developing system interconnects via API to include data exchange via XML and JSON.Must have
