Job Description

Who we are looking for

As a SIEM Data Architect, you will play a key role in our Security engineering team as the lead resource for identifying, documenting, sourcing, and continuous refinement of the data required for the SIEM platforms. You will enforce governance around data quality and data availability in a complex globally distributed environment. You will be the subject matter expert on the data and the multiple systems from where the data will be sourced and play a key role in contributing to the data onboarding and threat detection content development functions.

What you will be responsible for

As SIEM Data Architect you will

* Work with content management team to identify log sources required for threat detection rules
* Ensure use cases are mapped to an framework like MITRE ATT&CK and document the inherited tactic/technique to the log sources
* Map the log data requirements to its security specific categorizations and identify the products within State Streets echo system of applications/platforms in legacy datacenters, public cloud tenants , subsidiaries & affiliates and SaaS services
* Provide the documented requirements to Splunk engineers and coordinate the data onboarding with platform/application owners
* Enforce established governance framework for data source identification, data onboarding, data validation, inventory validation & Splunk CIM validation to ensure the readiness of data for content development
* Provided completed log source documentation to content development team to initiate use case development & testing
* Work with Splunk engineers to develop automation for data/process governance for initial data onboarding and ongoing validations
* Work with platform/application owners to understand their roadmap and changes to their platforms to ensure changes are handled in the Splunk data ingest layer and threat detection content
* Ensure technical issues are quickly resolved and help implement strategies and solutions to reduce the likelihood of recurrence.
* Develop reports and dashboards in Splunk to support data onboarding/validation functions

What we value

These skills will help you succeed in this role

* Independent, self-motivated, proactive approach to problem solving and prevention.
* Effectively communicate requirements and risks to stakeholders such as Product, Engineering, and Security leadership.
* Work with cross-functional teams to proactively improve on existing integration automation/workflows.
* Maintain up-to-date knowledge of technology standards, industry trends, emerging technologies, and security best practices.

Education & Preferred Qualifications

The candidate shall have Degree in Computer Science, Engineering, Information Technology, Cybersecurity or related field and a minimum of 15+ years of experience in multiple areas of information technology with a focus on data analytics.

* 15+ years of IT experience in engineering, network management, application development, project management & program management
* Proficient with office tools for project planning
* Proficient with data management using Excel, Database/Sql
* Experience/Education on Splunk as a data platform for reporting, visualization and data analytics
* Proficient in scripting languages like Python, PowerShell, Shell scripting
* Experience in managing large programs involving Enterprise-wide system implementations that covers a very large footprint of servers and end-user computing devices
* Broad knowledge of information technology in the areas of application development, computing platforms, information security systems & cyber security

About State Street

What we do. State Street is one of the largest custodian banks, asset managers and asset intelligence companies in the world. From technology to product innovation were making our mark on the financial services industry. For more than two centuries, weve been helping our clients safeguard and steward the investments of millions of people. We provide investment servicing, data & analytics, investment research & trading and investment management to institutional clients.

Work, Live and Grow. We make all efforts to create a great work environment. Our benefits packages are competitive and comprehensive. Details vary in locations, but you may expect generous medical care, insurance and savings plans among other perks. Youll have access to flexible Work Program to help you match your needs. And our wealth of development programs and educational support will help you reach your full potential.

Inclusion, Diversity and Social Responsibility. We truly believe our employees diverse backgrounds, experiences and perspective are a powerful contributor to creating an inclusive environment where everyone can thrive and reach their maximum potential while adding value to both our organization and our clients. We warmly welcome the candidates of diverse origin, background, ability, age, sexual orientation, gender identity and personality. Another fundamental value at State Street is active engagement with our communities around the world, both as a partner and a leader. You will have tools to help balance your professional and personal life, paid volunteer days, matching gift program and access to employee networks that help you stay connected to what matters to you.

State Street is an equal opportunity and affirmative action employer.

Discover more at StateStreet.com/careers