Security Architect - Advanced Threat Response

Project descriptionJoin our Development Centre in Bucharest and become a member of our open-minded, progressive and professional team. In this role you will be working for one of our world-famous clients.The Chief Security Office (CSO) of our client comprises the Chief Information Security Office (CISO) and the Corporate Security unit. The CISO organization guarantees information security for our client.The current initiatives are centered on enhancing cybersecurity capabilities across several critical domains: Threat Intelligence, Advanced Persistent Threats (APTs), Red Team Operations, Forensics and Malware Analysis.These projects are designed to strengthen the organization's defense systems and enhance response strategies against complex cyber threats.We are looking for candidates with strong engineering experience in the areas mentioned above to assist in evaluating and selecting the most effective tools. The roles include implementing the chosen solutions, migrations to different platforms and integrating them with already existing systems to ensure a smooth transition and improved security posture.On top of attractive salary and benefits package, Luxoft will invest into your professional training, and allow you to grow your professional career.ResponsibilitiesLooking for a Security Architect to join the Engineering organization, focused on Threat Simulation and Threat Intelligence capabilities to enable continuous, automated adversary emulation and high-fidelity detection.You will manage onboarding, migration and integration of tools, conduct POCs to choose the best solutions, collaborate with vendors and stakeholders and enable Purple/RedTeam testing by delivering engineered platform configurations and data feeds.Key responsibilities:Lead onboarding and lifecycle management of new TI and adversarial-simulation tools (evaluation, procurement input, deployment etc)Design, implement and validate use-case deployments for detection, hunting and simulation scenarios end-to-endPlan and execute tool migrations (legacy to new platforms) , including data migration, mapping of telemetry/eventsIntegrate TI tools with SIEM/Data Lake, SOAR and other repositoriesAssess gaps in capabilities and recommend procurement of new adversarial/simulation or TI platforms. Produce comparative business/technical assessmentsRun technical POCs (define success criteria, test plans, datasets, run experiments, analyze results, recommend optimal solution that maps to requirements)Configure and tune platforms (playbooks, detection rules, sensors/agents, orchestration workflows) to enable automated testing and continuous validationIntegrate new Threat Intelligence feeds into detection/hunting pipelines: normalization, scoring, enrichment and suppression rulesEvaluate feature sets of tools and produce structured feature/fit assessmentsWork with vendors, procurement and engineering stakeholders to negotiate deployment timelines and support escalation pathsSupport Purple/Red teams by providing the infrastructure, simulated adversary capabilities and automated execution to drive continuous security validationBuild automation and engineering artifacts to deploy and maintain platforms reproduciblySkillsMust have5+ years of experience in security engineering, threat intelligence or adversary simulation roles. Prior responsibility for tool selection, deployment and integration would be a plusStrong Linux administration skills (system hardening, service management, troubleshooting, network tuning, secure baseline implementation, service orchestration)Practical Cloud management knowhow with CI/CD pipeline design and implementation experienceStrong hands-on experience integrating security tools with SIEM/Data Lake and detection/hunting pipelinesDemonstrated experience running technical POCs and producing decision-grade evaluationsExperience working with or supporting Purple/Red team activities and translating their input into detections and test automationsExcellent stakeholder management and cross-team collaboration