Job Position – SOC Advisory Consultant
Company Name – Flint International
Security Architect
Location : Dubai
The lead Security Architect for the transformation program.
Key Responsibilities:
1. Architecture Development & Governance:
-Develop a comprehensive Target Technical Architecture that serves as the blueprint for integrating people, processes, and technology.
-Translate service design requirements into functional technical components, data flows, and integration points.
-Ensure all vendor implementations align with the approved reference architecture, providing design rationale and addressing cross-technology dependencies (SIEM, SOAR, EDR, NDR, DLP, IAM, etc.).
-Conduct design reviews and provide validation sign-off for vendor-led implementation activities.
2. Service Strategy & SOC Design:
-Collaborate with stakeholders to develop a long-term SOC Service Strategy, defining service scope, KPIs, SLAs, and operational maturity targets.
-Design effective SOC services by decomposing them for feasibility and viability, ensuring minimal lifecycle improvement needs.
-Define the preferred operating model, including service triggers, components, outputs, and consumer requirements.
3. SIEM Transformation (Splunk):
-Lead the assessment and optimization of the current SIEM platform to ensure high-fidelity telemetry and actionable detection.
-Validate log sources, standardize field extractions (CIM), and develop advanced security content, dashboards, and visualizations.
-Align SIEM configurations with threat detection frameworks such as MITRE ATT&CK.
4. SOC Enablement & Mentoring:
-Develop and document robust Standard Operating Procedures (SOPs) to ensure operational discipline and consistency..
Key Deliverables:
-Service Strategy Document: A strategic roadmap defining SOC growth, investments, and service management outcomes.
-SOC Service Design Report: A detailed report on service components, RACI, and service level parameters.
-Target Technical Architecture Model: An end-to-end view covering telemetry, analytics, and control integration.
-Security Control Integration Map: A reference model for SIEM, SOAR, EDR, NDR, and other platforms.
-Data Flow & Interface Specifications: Visual diagrams and API documentation for system-to-system integration.
-SOC Process Documents (SOPs): Including Security Monitoring Playbooks (5), Incident Management, Threat Intelligence Framework, Threat Hunting Framework, and Vulnerability Management Framework.
Qualifications:
-Extensive experience as a Security Architect or Senior SOC Consultant.
-Deep technical proficiency in SIEM platforms (specifically Splunk) and integration with SOAR, EDR, and NDR tools.
-Strong understanding of security frameworks (MITRE ATT&CK, NIST, ISO) and their application in mission-critical environments.