SIEM/SOAR Administrator/Assessor Associate Director

Описание вакансии

At Accenture Federal Services, nothing matters more than helping the US federal government make the nation stronger and safer and life better for people. Our 13,000+ people are united in a shared purpose to pursue the limitless potential of technology and ingenuity for clients across defense, national security, public safety, civilian, and military health organizations.

Join Accenture Federal Services, a technology company within global Accenture. Recognized as a Glassdoor Top 100 Best Place to Work, we offer a collaborative and caring community where you feel like you belong and are empowered to grow, learn and thrive through hands-on experience, certifications, industry training and more.

Join us to drive positive, lasting change that moves missions and the government forward!

You Are:

The SIEM/SOAR Administrator Associate Director plays a critical role in managing, optimizing, and evaluating the Security Information and Event Management (SIEM) and Security Orchestration, Automation, and Response (SOAR) systems used in the Network Operations Center (NOC) and Security Operations Center (SOC). This position is responsible for the day-to-day administration of these tools, as well as conducting regular assessments of their effectiveness and efficiency. Additionally, this role involves evaluating existing security business processes and recommending improvements to enhance overall security operations. This SIEM/SOAR Administrator / Assessor role is crucial for ensuring the effective use of security tools and processes in the NOC and SOC environments.The position requires a blend of technical expertise, analytical skills, and the ability to drive continuous improvement in security operations.

The Work:

• Configure, maintain, and optimize SIEM and SOAR platforms
• Develop and implement use cases, correlation rules, and playbooks
• Troubleshoot and manage issues related to data collection, analysis, and reporting
• Assess the existing and to be state of the NOC and SOC operating environment
• Conduct gap analysis to identify areas for improvement in current toolset
• Integrate SIEM/SOAR systems with other security and network tools
• Ensure proper data flow and communication between different security systems
• Troubleshoot integration issues and work with vendors to resolve problems
• Create and maintain dashboards for real-time visibility into security events
• Review and assess existing security business processes
• Identify inefficiencies, redundancies, or gaps in current processes
• Recommend process improvements to enhance security operations
• Ensure SIEM/SOAR configurations meet compliance requirements
• Prepare documentation and evidence for security audits
• Assist in developing and maintaining policies and procedures related to SIEM/SOAR usage
• Provide technical support during security incidents
• Work closely with NOC, SOC, and other IT teams to align SIEM/SOAR capabilities with operational needs
• Participate in cross-functional projects related to security improvements

Here’s What You Need:

• Bachelors degree
• 5-10 years of experience in cybersecurity operations, security tools administration, or a related field.
• Hands-on experience with SIEM/SOAR platforms (e.g., Splunk, QRadar, LogRhythm, ArcSight, Sentinel, Cortex XSOAR, or others).
• Experience in configuring and optimizing use cases, correlation rules, and playbooks.
• Proficiency in troubleshooting and managing issues related to data collection, analysis, and reporting.
• Strong understanding of security and network protocols, data flow, and integration of security tools.
• Familiarity with scripting and automation languages (e.g., Python, PowerShell) for creating custom scripts and integrations.
• Knowledge of compliance requirements and best practices for SIEM/SOAR configurations.

Bonus Points If:

• Analytical Skills:

• Ability to conduct gap analysis to identify areas for improvement in the NOC and SOC operating environments.
• Strong analytical and problem-solving skills to assess and enhance security processes.

• Communication and Collaboration:

• Strong ability to document and prepare evidence for security audits.
• Excellent communication skills to work effectively with NOC, SOC, and cross-functional IT teams.
• Ability to translate technical findings into actionable recommendations for non-technical stakeholders.

• Additional Skills:

• Knowledge of compliance frameworks such as NIST, ISO 27001, or others.
• Familiarity with dashboard creation and real-time monitoring for security events.
• Proven track record of process improvement and driving efficiency in security operations.

• Relevant certifications such as CISSP, CISM, CEH, GIAC, or SIEM/SOAR-specific certifications (e.g., Splunk, QRadar, Palo Alto Cortex XSOAR certifications).

The Extras:

• US Citizenship Required
• The ability to obtain and maintain a Secret clearance

As required by local law, Accenture Federal Services provides reasonable ranges of compensation for hired roles based on labor costs in the states of California, Colorado, Hawaii, Illinois, Maryland, Massachusetts, Minnesota, New Jersey, New York, Washington, Vermont, the District of Columbia, and the city of Cleveland. The base pay range for this position in these locations is shown below. Compensation for roles at Accenture Federal Services varies depending on a wide array of factors, including but not limited to office location, role, skill set, and level of experience. Accenture Federal Services offers a wide variety of benefits. You can find more information on benefits here. We accept applications on an on-going basis and there is no fixed deadline to apply.

The pay range for the states of California, Colorado, Hawaii, Illinois, Maryland, Massachusetts, Minnesota, New Jersey, New York, Washington, Vermont, the District of Columbia, and the city of Cleveland is:

$186,300—$360,800 USD

*What We Believe*

As a company wholly dedicated to serving the US federal government, we bring together the best talent to help reinvent how federal agencies operate and deliver greater value for their mission and the American people. We have an unwavering commitment to creating a culture in which all our people are respected, feel a sense of belonging, and have equal opportunity. As a business imperative, every person at Accenture Federal Services has the responsibility to create and sustain a culture where everyone feels welcomed and included. This is grounded in our core values and our experience that hiring and developing great people who reflect different perspectives, experiences, and backgrounds is key to driving innovation and delivering the results that our clients and the country count on.

*Equal Employment Opportunity Statement*

We believe that no one should be discriminated against because of their differences. All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law. Our rich diversity makes us more innovative, more competitive, and more creative, which helps us better serve our clients and our communities. For details, view a copy of theAccenture Federal Services Equal Opportunity Policy Statement.

Accenture Federal Services is an Equal Employment Opportunity employer. Additionally, as an Affirmative Action Employer for Veterans and Individuals with Disabilities, Accenture Federal Services is committed to providing veteran employment opportunities to our service men and women.

*Requesting An Accommodation*

Accenture Federal Services is committed to providing equal employment opportunities for persons with disabilities or religious observances, including reasonable accommodation when needed. If you are hired by Accenture Federal Services and require accommodation to perform the essential functions of your role, you will be asked to participate in our reasonable accommodation process. Accommodations made to facilitate the recruiting process are not a guarantee of future or continued accommodations once hired.

If youare being considered for employment opportunities with Accenture Federal Services and need an accommodation for a disability or religious observance during the interview process or for the job you are interviewing for, please speak with your recruiter.

*Other Employment Statements*

Applicants for employment in the US must have work authorization that does not now or in the future require sponsorship of a visa for employment authorization in the United States.

Candidates who are currently employed by a client of Accenture Federal Services or an affiliated Accenture business may not be eligible for consideration.

Job candidates will not be obligated to disclose sealed or expunged records of conviction or arrest as part of the hiring process.

The Company will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. Additionally, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the Company's legal duty to furnish information.

California requires additional notifications for applicants and employees. If you are a California resident, live in or plan to work from Los Angeles County upon being hired for this position, please click here for additional important information.