Remote Security Operations Center Architect

Description:

• Accesa is a leading technology company headquartered in Cluj-Napoca, with offices in Oradea and 20 years of experience in turning business challenges into opportunities and growth.
• The company has established itself as a partner of choice for major brands in Retail, Manufacturing, Finance, and Banking, covering the complete digital evolution journey of its customers.
• The team consists of diverse skills, including DevOps Engineers, Application Management Engineers, Observability Engineers, and Security Engineers, focused on strong communication and collaboration.
• The SOC Architect will serve as a highly specialized domain expert responsible for the strategic design, engineering rigor, and operational excellence of the Security Operations Center (SOC).
• The role focuses on the detection, investigation, and response aspects of the enterprise's cyber defense, acting as a bridge between strategic vision and operational mastery.
• Responsibilities include leading the design of a cloud-native SOC, converting security strategies into actionable detection logic, optimizing security at scale, engineering SIEM & XDR integrations, automating response operations, and enabling operational excellence.

Requirements:

• Candidates must have deep hands-on experience with Microsoft Sentinel, Log Analytics Workspaces, and the Defender XDR ecosystem.
• Advanced proficiency in Kusto Query Language (KQL) for analytics rules, hunting queries, and performance optimization is required.
• Strong experience in designing automation using Azure Logic Apps, Power Automate, and SOAR concepts is essential.
• Proven experience in designing SOC architectures, Log Analytics Workspace topologies, and MSSP models using Azure Lighthouse is necessary.
• A solid understanding of NIDS/NIPS, Windows/Linux security, and hybrid log ingestion (CEF, AMA, CCF) is required.
• Candidates should have 5+ years of professional experience in Cyber Security, SOC, Incident Response, or Security Engineering, with the ability to bridge technical execution and executive strategy.
• Preferred qualifications include Microsoft SC-100, SC-200, or industry equivalents such as CISSP or CISM, as well as experience with Zscaler, OT/ICS environments, legacy SIEM migrations, or knowledge of geopolitical cyber threats and cyber insurance.

Benefits:

• Accesa offers a holistic benefits program that supports social, physical, emotional wellbeing, and work-life fusion.
• The physical wellbeing program includes medical benefits, gym support, and personalized fitness options for an active lifestyle, along with team events and the Healthy Habits Club.
• The work-life fusion approach provides flexibility to define the work-life dynamic that works for each individual in the dynamic IT industry.
• Emotional wellbeing initiatives focus on investing in mental health, social connections, and achieving work-life balance.
• The social wellbeing aspect ensures that the growing community remains connected through shared passions and interests in a hybrid work environment.