SOC Architect / Splunk Engineer

Tandym Tech Logo
Tandym Tech
United States (Remote)
  • Construction
  • Applications have closed

A recognized services company is actively seeking an experienced and forward-thinking SOC Security Architect to lead the design, validation, and governance of enterprise security architecture supporting enterprise hybrid environments. This role is ideal for a senior cybersecurity professional who combines deep technical expertise with strategic design thinking and the ability to influence across engineering, security, and executive stakeholders.

About the Opportunity:

  • Remote long term contract Opportunity

  • Must be able to obtain and maintain the required agency clearance (6C Public Trust)

Expectations for the position:

  • Client Facing (Excellent verbal & written communication)

  • Splunk Architect/Engineer Experience (Hands-on)

  • PM experience to communicate tasks and timelines

  • ITSM experience (preference ServiceNow) to manage tickets

  • Enterprise logging – To design and improve probability of detection

  • U.S. Citizen (Public Trust 6c)

Contributing Skills/Education

  • Splunk user as an analyst (e.g., cyber threat hunting, cyber threat intel, RedTeam, PurpleTeam, PenTest)

  • Splunk certifications

  • GIAC certifications

  • Architected solutions for SOC (e.g., EDR, NDR, AV, FW,ASM,DLP,CTEM,CAS,BAS, DFIR, Cloud – AWS)

Responsibilities:

  • Develop and maintain SOC security architecture for hybrid cloud, data center, identity, and endpoint ecosystems.

  • Translate federal and organizational security requirements (NIST, RMF, Zero Trust) into enforceable technical control patterns, standards, and baselines.

  • Conduct threat modeling and architecture risk assessments for new systems, major changes, and modernization initiatives.

  • Define and document security reference architectures, data flows, segmentation models, and defense-in-depth control layers.

  • Partner with Cloud, Network, IAM, DevSecOps, and SOC teams to ensure secure-by-design implementation throughout system lifecycles.

  • Provide architectural review and approval for new deployments, configuration changes, tool onboarding, and emerging initiatives.

  • Evaluate security technology capabilities and develop multi-year roadmap recommendations based on mission priorities and evolving threat landscape.

Qualifications

  • 8 years of hands-on cybersecurity experience, including 4 years in security architecture, engineering, or security design roles.

  • Demonstrated ability to architect SOC secure solutions across hybrid environments (cloud on-prem), including identity, network, data, and workload security. With a strong emphasis on SIEM (Splunk)

  • Strong command of:

  • Enterprise security control design and defense-in-depth principles

  • Zero Trust architectures and identity-centric access models

  • Threat modeling and architecture risk assessment methodologies

  • Security logging, telemetry, and monitoring architecture

  • Federal cybersecurity standards (NIST 800-53, 800-171, NIST CSF, FedRAMP, RMF)

  • Ability to translate risk, threats, and compliance requirements into technical design decisions.

  • Excellent written and verbal communication skills, including security architecture documentation and executive briefing.

Apply for job