Rediscover the meaning of technology | Spain, USA, UK, Germany, Netherlands, Australia and Romania.
Agentic Detection & Response Security Automation Architect
Location
Worldwide
Posted
2 days ago
Salary
0
Seniority
Mid Level
Job Description
Agentic Detection & Response Security Automation Architect
Plain Concepts
Role Description Transform security operations for the AI era. We are looking for a senior cybersecurity professional to help redesign how modern Security Operations Centers detect, investigate and respond to threats by combining Detection & Response expertise, security automation, AI automation and agentic AI capabilities. The role will focus on turning traditional SOC processes into intelligent, controlled and scalable workflows, where AI agents can assist analysts, automate repetitive tasks, enrich investigations, recommend actions and accelerate response while maintaining human oversight, auditability and security control. This is a hands-on architecture role at the intersection of SecOps, SIEM/SOAR, Detection Engineering, Incident Response and AI-native automation. The ideal candidate will help organizations move from manual, ticket-driven security operations toward a new operating model where analysts, automation and AI agents work together to increase speed, consistency and resilience. Key Responsibilities - AI-native SOC transformation - Analyze current SOC operating models, L1/L2 activities, escalation flows and response procedures. - Identify opportunities to automate, augment or redesign detection and response processes using AI automation and agentic workflows. - Translate analyst knowledge into structured, reusable and automatable workflows. - Define how AI agents can support alert triage, enrichment, investigation, prioritization and response. - Establish clear boundaries between autonomous actions, AI-assisted recommendations and human decision points. - Help organizations evolve from traditional SOC processes to AI-enabled security operations. - Detection & Response automation architecture - Define automation blueprints for common detection and response use cases. - Convert incident response playbooks into structured workflows. - Define decision trees, enrichment steps, evidence requirements and output formats. - Support the design of automated triage, false positive reduction and incident prioritization. - Create reusable patterns for investigation, containment, escalation and reporting. - Ensure automation is reliable, explainable and operationally useful for SOC teams. - Agentic security operations design - Define agent roles, responsibilities, permissions and execution boundaries. - Design human-in-the-loop models for sensitive or high-impact actions. - Define approval workflows, escalation paths and confidence thresholds. - Ensure agent recommendations are explainable, traceable and auditable. - Define logging and evidence requirements for AI-assisted decisions. - Identify and mitigate risks such as unsafe automation, hallucination, excessive permissions, prompt injection, data leakage or incorrect response actions. - Work with AI engineering teams to ensure agentic workflows are secure, controlled and aligned with security operations needs. - Relevant technology exposure - SIEM platforms such as Microsoft Sentinel, Splunk, QRadar, Chronicle or similar. - SOAR platforms and automation frameworks. - XDR / EDR platforms and cloud security platforms. - Identity and access management systems. - Threat intelligence platforms. - Case management and ticketing tools. - AI automation platforms, agentic AI frameworks and enterprise AI orchestration environments. - Microsoft Foundry, Microsoft Security Copilot, Logic Apps, Azure Functions or automation runbooks, where relevant. Qualifications - 6+ years of experience in cybersecurity, with strong background in Detection & Response, SOC operations, security automation, SIEM engineering or security architecture. - Proven experience designing or implementing AI automation, AI-assisted workflows, agentic automation or AI-enabled operational processes. - Strong understanding of how modern SOCs operate across L1, L2 and L3 functions. - Experience designing or improving detection use cases, triage processes, incident response procedures and SOC playbooks. - Hands-on experience with SIEM and/or SOAR platforms. - Ability to translate analyst procedures into structured workflows, decision trees and automation requirements. - Good understanding of alert enrichment, case management, incident lifecycle management and escalation models. - Practical understanding of identity, permissions, API integrations and secure automation design. - Ability to work with SOC analysts, security architects, engineering teams and senior client stakeholders. - Strong documentation skills, especially for operational procedures, use case specifications and technical architecture. - Ability to design automation that works in real SOC environments, not just theoretical diagrams. Desirable Experience - Microsoft Sentinel, Defender XDR or Microsoft Security Copilot. - Microsoft Foundry or Azure AI-based automation. - Agentic AI workflows in cybersecurity or IT operations. - Loop generation and maintenance. - SOC automation / SOAR implementation. - Logic Apps, Azure Functions or automation runbooks. - KQL, SPL or equivalent SIEM query languages. - Detection engineering and MITRE ATT&CK mapping. - Threat intelligence enrichment. - Incident response automation. - XDR / EDR platforms and cloud security operations. - Case management integration. - Enterprise SOC transformation programs. - MDR/MSSP operating models. - Purple teaming or detection validation. - DevSecOps or infrastructure automation. - GRC/control evidence automation for security operations. Benefits - Salary determined by the market and your experience 🤑 - Flexible schedule 35 Hours / Week 😎 - Fully remote work (optional) 🌍 - Flexible compensation (restaurant, transport, and childcare) ✌ - Fully free health insurance, with a co-payment for dental services 🚑 - Individual budget for training or equipment and free Microsoft certifications 📚 - English lessons 🗽 - Birthday day off 🌴🥳 - Monthly bonus for electricity and Internet expenses at home 💻 - Discount on gym plan and sports activities 🔝 - Plain Camp (annual team-building event) 🎪 - Extra perks: events attendance and speakers, welcome pack, baby basket, Christmas basket, discount portal for employees ➕ - The pleasure of always working with the latest technological tools! Company Description Plain Concepts is a global company of over 500 people passionate about technology and innovation. Since our founding, we have grown through technical proficiency and confidence in ideas that others might consider risky, creating custom solutions for our clients. With offices in more than 6 countries, our mission is to continue to drive cutting-edge projects around the world. We are highly committed to technical excellence. We are known for developing highly customized projects, offering specialized technical consultancy and training. Thanks to the great work of our technicians, we have been recognized for our ability to lead innovative projects that generate value, from artificial intelligence to blockchain, driving solutions that help companies optimize their performance.
Related Guides
Related Categories
Related Job Pages
More Architect Jobs
Enterprise Architect
ZensarAt Zensar, we’re “experience-led everything”. We are committed to conceptualizing, designing, engineering, marketing, and managing digital solutions and experiences for over 130 leading enterprises. We are a company driven by a bold purpose: Together, we shape experiences for better futures. Whether for our clients, our people, or the world around us, this belief powers everything we do. At the heart of our culture is ONE with Client - a set of four core values that reflect who we are and how we work: One Zensar, Nurturing, Empowering, and Client Focus. Part of the $4.8 billion RPG Group, we’re a community of 10,000+ innovators across 30+ global locations, including Milpitas, Seattle, Princeton, Cape Town, London, Zurich, Singapore, and Mexico City. We believe the best work happens when individuality is celebrated, growth is encouraged, and well-being is prioritized. We are an equal employment opportunity (EEO) and affirmative action employer, committed to creating an inclusive workplace. All qualified applicants will be considered without regard to race, creed, color, ancestry, religion, sex, national origin, citizenship, age, sexual orientation, gender identity, disability, marital status, family medical leave status, or protected veteran status.
Role Description We are seeking an experienced Enterprise Architect to shape the target-state architecture for a strategic Azure-based platform for intelligent document processing, validation, workflow orchestration, and downstream transaction enablement. This role is accountable for defining scalable architecture patterns, technology guardrails, integration standards, security and control principles, and platform evolution across lines of business. The ideal candidate combines strong enterprise architecture discipline with hands-on depth in cloud-native Azure platforms, event-driven design, API-led integration, data architecture, and operational resilience. Key Responsibilities - Define and govern the target-state architecture for the application, including platform boundaries, reference patterns, integration principles, and architectural guardrails. - Architect cloud-native, event-driven solutions on Azure across ingestion, extraction, validation, workflow orchestration, case management, and downstream system integration. - Establish reusable patterns for APIs, messaging, workflow orchestration, data persistence, identity and access, observability, and environment design to support scale across multiple lines of business. - Lead architecture decisions for Azure services such as App Services, Functions, Logic Apps, Event Grid or Service Bus, API Management, Blob Storage, Cosmos DB, PostgreSQL, Key Vault, and Entra ID. - Drive secure-by-design and control-by-design architecture, including zero-trust principles, private connectivity, RBAC, segregation of duties, encryption, auditability, and regulatory alignment. - Define non-functional requirements and architecture standards for scalability, performance, resilience, disaster recovery, supportability, and production readiness. - Partner with product, engineering, security, operations, and business stakeholders to translate business demand into durable platform capabilities rather than one-off solutions. - Review solution designs, challenge architectural drift, manage key technology trade-offs, and ensure alignment to enterprise standards and the long-term roadmap. - Produce clear architecture artifacts, decision records, and executive-ready communication to support governance, delivery teams, and senior leadership review. Qualifications - 12+ years of experience in software engineering, solution architecture, or enterprise architecture, with substantial experience in architecting enterprise-scale platforms. - Strong experience designing cloud-native solutions on Microsoft Azure, including application, integration, data, identity, networking, and security architecture. - Proven expertise in distributed systems, event-driven architecture, API-first design, microservices-aligned patterns, and asynchronous integration. - Deep knowledge of architecture patterns for workflow orchestration, human-in-the-loop processing, rules-driven decisioning, and operational case lifecycle management. - Hands-on familiarity with Azure services such as App Services, Functions, Logic Apps, Event Grid or Service Bus, API Management, Storage, Cosmos DB, PostgreSQL, Key Vault, Monitor, and Entra ID. - Experience defining architecture for secure and regulated environments, including private networking, role-based access, audit trails, data protection, resilience, and disaster recovery. - Strong understanding of CI/CD, infrastructure as code, environment strategy, and production governance for enterprise platforms. - Ability to work across business, product, engineering, and governance stakeholders and convert ambiguous demand into clear architectural direction. - Excellent communication skills, with the ability to create high-quality architecture documents, present trade-offs, and influence senior stakeholders. - Bachelor’s degree in Computer Science, Engineering, Information Technology, or a related discipline. Preferred Qualifications - Experience with architecture for intelligent document processing, OCR/extraction pipelines, or AI-enabled operational platforms, including services such as Azure AI Document Intelligence. - Familiarity with architecture for regulated, high-volume operational workflows that require strong auditability, explainability, and human-in-the-loop controls. - Experience designing platforms that support multi-line-of-business reuse through configuration, modular services, and well-defined platform boundaries. - Understanding of enterprise data architecture, lineage, canonical data models, and integration patterns across systems of record and operational platforms. - Experience working through enterprise architecture, security architecture, risk, and production governance review processes in large organizations. - Relevant Azure or architecture certifications are a plus. Benefits - We are committed to conceptualizing, designing, engineering, marketing, and managing digital solutions and experiences for over 130 leading enterprises. - We believe the best work happens when individuality is celebrated, growth is encouraged, and well-being is prioritized. - We are an equal employment opportunity (EEO) and affirmative action employer, committed to creating an inclusive workplace.
Solution Architect
Interactive BrokersInteractive Brokers Group, Inc. is an international securities firm that is backed by more than $10 billion in equity. The company’s mission is to design tech
Title: Solution Architect Location: Greenwich United States Job Description: Company Overview Interactive Brokers Group, Inc. (Nasdaq: IBKR) is a global financial services company headquartered in Greenwich, CT, USA, with offices in over 15 countries. We have been at the forefront of financial innovation for over four decades, known for our cutting-edge technology and client commitment. IBKR affiliates provide global electronic brokerage services around the clock on stocks, options, futures, currencies, bonds, and funds to clients in over 200 countries and territories. We serve individual investors and institutions, including financial advisors, hedge funds and introducing brokers. Our advanced technology, competitive pricing, and global market help our clients to make the most of their investments. Barron's has recognized Interactive Brokers as the #1 online broker for six consecutive years. Join our dynamic, multi-national team and be a part of a company that simplifies and enhances financial opportunities using state-of-the-art technology. This is Hybrid role (4 days in office /1 day remote) About your Team: In this role you will work with software developers, third-parties, and operations teams to deep dive into technical problems, understand project requirements, goals and limitations then design technical approaches and corresponding plans to integrate the necessary components into both new and existing technical environments.You will leverage your existing knowledge about infrastructure, systems and software along with institutional knowledge and documentation to optimize implementation of software, tools, infrastructure and other technology into project plans balancing resiliency, speed and cost factors.You will develop a deep well of experience, insight and understanding of the infrastructure, trading applications and various technical environments for use when responding to scaling challenges and technical limitations. Getting up-close and hands-on, you will work alongside network, storage and application designers as well as third-party SME’s and sales engineers, leveraging automation to create the task outlines and project plans necessary to implement your designs. By building an understanding of the existing technical landscape, current regulatory rules and overall fit-and-function, you will develop solutions with a specific goal of simplifying the requirements and designing pragmatic, effective solutions ensuring speed and reliability as it scales.You will develop concise and effective diagrams to document the designs and implementations for future reference by operations and other project teams.As you progress in knowledge and understanding you will work alongside developers and applications teams to assist where necessary to prototype, test and implement the solutions as practical. What will be your responsibilities within IBKR: - Design resilient solutions, carefully balancing time, cost and scope - Enforce organizational standards, industry best practices using an innovative approach - Act as an overall subject matter expert on design patterns, infrastructure, hardware and software - Review the existing deployments, current solutions, etc. and prescribe/implement upgrades and capacity increases as required What required skill’s you need: - Basic scripting capability and comfort in a *nix command-line operating environment - Strong love of technology and a profound knowledge of how technologies integrate and interact - Keen understanding of technical documentation products and project management software (e.g. Atlassian, ServiceNow, etc.) - Posses of pursuing a Bachelors degree in Computer Science (and/or similar degree in a relevant technical field, or equivalent practical experience) - Experience with project planning, task decomposition and general project management skills To be successful in this position, you will have the following: - Self-motivated and able to handle tasks with minimal supervision. - Superb analytical and problem-solving skills. - Excellent collaboration and communication (Verbal and written) skills. - Outstanding organizational and time management skills. Company Benefits & Perks - Competitive salary, annual performance-based bonus and stock grant - Retirement plan 401(k) with competitive company match - Excellent health and wellness benefits, including medical, dental, and vision benefits. Company paid medical healthcare premium. - Wellness screenings and assessments, health coaches and counseling services through an Employee Assistance Program (EAP) - Daily company lunch allowance provided and a fully stocked kitchen with healthy options for breakfast and snack - Corporate events including team outings, dinners, volunteer activities and company sports teams - Education reimbursement and learning opportunities
Title: Implementation Integration architect - Electronic Health Records - Remote! Location: Any Location / Remote Job Description: Full Part/Time: Full time Job Req: RQ223001 Type of Requisition: Regular Clearance Level Must Currently Possess: None Clearance Level Must Be Able to Obtain: None Public Trust/Other Required:SSBI (T5) Job Family: IT Infrastructure and Operations Job Qualifications: Skills: Complex Systems, Leading Project Teams, Systems Design, Systems Development Certifications:None Experience: 8 + years of related experience US Citizenship Required:No Job Description: GDIT has been supporting the IHS mission for 20+ years; working with the agency to provide integral services to raise health access and availability to 2.6 million American Indians and Alaska Natives. You'll be part of modernizing the EHR platform to enable better data access, patient experience, and quality of care for 567 tribes, 37 states and over 600 medical facilities. Our work depends on an Implementation Methodology Integration architect joining our team to support the Indian Health Service (IHS) Electronic Health Records Modernization (EHRM) program known as PATH EHR. As an Implementation Integration architect supporting the IHS EHRM program, you will be responsible for supporting the Implementation Lead in delivery and execution of the PATH EHR program. This position is fully remote with up to 25% travel. HOW AN IMPLEMENTATION INTEGRAATION ARCHITECH WILL MAKE AN IMPACT: - Responsible for Integration Architect activities to support the PATH EHR Delivery Team. - Serves as the primary Integration Architect for the Implementation team and provides IA coordination across all Delivery Workstreams. - Assisting with the execution of the enterprise/roll out design strategy, specifically including, but not limited to, technical/interface integration and device management (BMDI, MDI, etc.). - Provide integration oversight for engagements and provide support to project team members so that project deliverables and timelines are met while ensuring value is delivered to the client as committed. - Provide integration and domain expertise to internal and external client project teams. - Responsibilities may include coordinating design, system validation and integration activities across solutions and venues of care. Provide coordination between Team GDIT, it's partners, federal leadership/project managers to ensure that contract deliverables and timelines are well organized and running smoothly. - Interact regularly with customers and other industry representatives to ensure conformance to customer requirements. - Manages and is responsible for the successful completion of all tasks in an assigned project. - Creates and manages project schedules, budgets, risk lists, communication plans, and lessons learned. Manages and directs efforts of cross-competency teams. - Accounts for and reports manpower status for team/site. - Prepares progress reports and briefs on project status and milestones in accordance with communication plan. - Responsible for team's delivery of services for project effort to include testing and risk management. REQUIRED QUALIFICATIONS AND EXPERIENCE: - 8+ years of related experience with Oracle Health as a Millennium Integration Architect. - Bachelor's degree or equivalent combination of education and experience. - 3+ years of experience as lead Integration Architect on medium to large Oracle Health EHR Implementations. - Proficient in Microsoft Office Suite, specifically Word, Excel, PowerPoint, Project and Visio. - Extensive understanding of expense and timekeeping management, process, and policies. - Technical Skillset: Citrix Storefront Management, Interface/FSI, Interoperability/CCDs, SQL/CCL, Deploying Hardware, TechPortal (Offline) and Automations, Olympus and Ops Jobs Configuration and Troubleshooting, WebSphere Application Server, Data Synchronization and Data Accuracy, OCI Knowledge/Certifications preferred. Assisting with the execution of the enterprise/roll out design strategy, specifically including technical/interface integration and device management (BMDI, MDI, etc.) - Ability to travel up to 25% of the year, if needed. DESIRED QUALIFICATIONS AND EXPERIENCE: - Experience supporting federal EHR programs. - Excellent organizational and time management skills; ability to manage frequently changing priorities of competing importance. - Excellent team building skills. - Ability to communicate and interact effectively with internal/external teams including key stakeholders and customers. - Ability to work independently with minimal supervision and within tight deadlines, following detailed written policies, processes, procedures, and work instructions. - Ability to produce high-quality documentation that contributes to the overall success of our program. SECURITY CLEARANCE LEVEL: - This role requires you to obtain and maintain an in-depth Public Trust Level 5. This investigation will review personal and criminal behavior, financial conduct, foreign influence, as well as other adjudications. GDIT IS YOUR PLACE: - Full-flex work week to own your priorities at work and at home. - 401K with company match. - Comprehensive health and wellness packages. - Internal mobility team dedicated to helping you own your career. - Professional growth opportunities including paid education and certifications. - Cutting-edge technology you can learn from. - Rest and recharge with paid vacation and holidays. #IHSJobs The likely salary range for this position is $125,528 - $169,832. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range. Scheduled Weekly Hours: 40 Travel Required: 25-50% Telecommuting Options: Remote Work Location: Any Location / Remote Additional Work Locations: Total Rewards at GDIT: Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. GDIT typically provides new employees with 15 days of paid leave per calendar year to be used for vacations, personal business, and illness and an additional 10 paid holidays per year. Paid leave and paid holidays are prorated based on the employee's date of hire. The GDIT Paid Family Leave program provides a total of up to 160 hours of paid leave in a rolling 12 month period for eligible employees. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most. Our Identity Verification Process: As part of the hiring process, we will ask you to complete an identity verification process that leverages advanced biometrics and artificial intelligence to ensure authenticity and protect against identity fraud. You are expected to be on camera during virtual interviews. We reserve the right to take your picture to verify your identity and prevent fraud. By proceeding, you authorize the collection, processing, and use of your biometric data for identity verification and security purposes. About Our Work: We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 26,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 50 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.
• Defining and maintaining overall mechanical architecture and design strategies. • Translating system requirements into mechanical design solutions. • Managing mechanical interfaces across subsystems and equipment. • Supporting trade studies, concept development, and design reviews. • Ensuring compliance with customer, mission, and industry requirements. • Performing design assessments, risk analysis, and requirement verification activities. • Supporting integration, testing, and qualification activities. • Collaborating with multidisciplinary engineering teams and stakeholders.


