Senior Cybersecurity Architect

Job Title: Senior Cybersecurity Architect - SIEM/SOC & Incident Response

Company: ITHR Tech

Location: UAE (Onsite or Offshore)

Availability: Immediate Joiners Preferred

Salary: Negotiable

Experience: 15-20 years in Cybersecurity

ITHR Tech is seeking a highly experienced Senior Cybersecurity Architect to lead SIEM/SOC modernization, cybersecurity architecture assessments, and incident response capability uplift. This role requires strong technical depth, strategic thinking, and the ability to drive large-scale transformation programs across enterprise environments, including banking, finance, and telecom.

• Conduct end-to-end assessments of SIEM architecture, SOC operations, and enterprise IR capabilities; evaluate maturity across people, processes, and technology; benchmark against global frameworks (NIST CSF, ISO 27001, MITRE ATT&CK); develop a modernization roadmap for SIEM, SOC, and IR functions.
• Redesign SIEM architecture and log ingestion strategy for improved visibility and performance; enhance log parsing, normalization, enrichment, and ingestion for cloud, endpoints, networks, and OT/ICS systems; improve correlation rules, use cases, and alert tuning to reduce false positives; implement advanced threat detection aligned to MITRE ATT&CK; establish SIEM governance, rule-tuning methodology, and operational best practices.
• Assess SOC workflows, shift models, tooling, and tiered analyst responsibilities; redesign triage and escalation processes to improve SLA adherence and response efficiency; strengthen integration across SIEM, SOAR, TIP, EDR, ticketing, and threat intel platforms; develop/refine IR playbooks for major incident scenarios; lead SOC modernization with automation, orchestration, and capability uplift.
• Evaluate IR processes including detection, containment, eradication, and recovery; conduct tabletop exercises and simulation-based training to enhance readiness; improve cross-functional coordination across IT, Security, Risk, and Compliance teams; advise leadership on emerging threats and best-practice response strategies.
• Lead implementation of all recommended enhancements across SIEM, SOC, and IR functions; manage cross-functional workstreams to ensure successful delivery and adoption; ensure all changes meet regulatory, compliance, and cybersecurity best-practice standards; track and report KPIs such as MTTD, MTTR, false-positive rates, use-case effectiveness, and detection coverage.

15-20 years of hands on cybersecurity experience; strong expertise in SIEM/SOC design, engineering, and operations; experience in cybersecurity governance, compliance, and risk management; proven track record conducting security architecture reviews and cyber maturity assessments; ability to effectively collaborate with IT, security teams, and external vendors; industry experience in banking, finance, telecom, or large enterprise environments; strong communication, leadership, and stakeholder engagement skills.

Location: UAE
Engagement: Onsite or Offshore
Start Date: Immediate joiners preferred