SOC Architect at Ralds & Agate

Mission / Purpose of the Job

• The SOC Architect is responsible for designing, integrating, and optimizing Security Operations Centre (SOC) operations and security engineering capabilities within the Managed Security Services Provider (MSSP) environment.
• The role serves as the technical and operational bridge between SOC analysts, security engineers, and clients, ensuring that security solutions are well-architected, operationally effective, and aligned with client risk profiles, service commitments, and evolving threat landscapes.

Job Responsibilities

• Engage directly with clients on-site to assess environments, design security architectures, and implement security solutions.
• Act as a trusted technical advisor during onboarding, service reviews, and security improvement initiatives.
• Translate client business and risk requirements into effective SOC and security engineering solutions.
• Support pre-sales activities, technical scoping, and solution design where required.
• Provide technical and operational leadership to SOC analysts and responders, ensuring effective monitoring, detection, and incident response.
• Guide SOC workflows, escalation processes, and incident handling procedures.
• Ensure SOC operations align with SLAs, playbooks, and industry best practices.
• Act as an escalation point for complex incidents and high-impact security events.
• Lead the design, implementation, and optimization of SOC and security platforms, including SIEM, SOAR, EDR/XDR, NDR, threat intelligence, and log management solutions.
• Oversee data onboarding, integrations, and tuning across client environments.
• Ensure SOC tooling is scalable, reliable, and engineered to support efficient operations.
• Drive automation and detection engineering to improve alert quality and reduce MTTR.
• Design and support security monitoring and controls for cloud environments (AWS, Azure, GCP).
• Integrate cloud logs, identity, network, and workload telemetry into SOC platforms.
• Advise clients on secure cloud architecture and monitor best practices.
• Bridge the gap between SOC operations and security engineering, ensuring tooling, detections, and automation support real operational needs.
• Work closely with engineers to translate analyst feedback into platform and detection improvements.
• Standardize configurations, architectures, and engineering practices across clients.
• Ensure SOC and engineering activities align with regulatory and contractual requirements (e.g., ISO 27001, SOC 2, PCI DSS).
• Support audits, assessments, and client assurance activities.
• Continuously evaluate emerging threats, technologies, and service improvements.

Job Specifications: Minimum & Preferred Requirements
Education / Business Degree:

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related discipline.
• Relevant professional certifications are an added advantage.

Work Experience:

• 7 – 10+ years experience in cybersecurity spanning SOC operations and security engineering.
• Proven experience working within an MSSP or multi-client security environment.
• Demonstrated hands-on experience implementing security solutions in client environments.
• Experience leading or providing technical direction to security teams.

Competencies, Skills & Attributes:

Knowledge:

• SOC operations and service delivery models.
• Security architecture design and implementation.
• Threat detection frameworks, including MITRE ATT&CK.
• Cloud security architecture and monitoring.
• Regulatory and compliance frameworks.

Skills:

• SIEM, SOAR, EDR/XDR, and SOC tooling
• Security architecture & engineering
• Detection engineering & automation
• Scripting (Python, PowerShell, Bash)
• Cloud security (AWS, Azure, GCP)
• Incident escalation & response
• Client engagement & technical advisory
• Stakeholder communication

Behavioral Attributes:

• Strong customer-facing presence
• Hands-on and solution-oriented mindset
• High ownership and accountability
• Analytical and detail-focused
• Ability to operate under pressure
• Collaborative and team-focused
• Professional integrity and confidence