Leonardo

Solution Architect

Leonardo

full-time

Posted on:

Location Type: Hybrid

Location: Genoa • 🇮🇹 Italy

Visit company website
AI Apply
Apply

Job Level

Mid-LevelSenior

Tech Stack

CitrixCyber SecurityDockerFirewallsKubernetesLinuxOracleSplunkVMware

About the role

  • Define and maintain the end-to-end technical architecture of the Security Operations Center (SOC) in compliance with ECSS standards and Customer requirements
  • Support the Technical Authority in decision-making and ensure technical consistency across all project phases (design, integration, verification, validation, qualification)
  • Coordinate cross-functional technical teams (infrastructure, networking, security, applications) to deliver the SOC baseline
  • Define and enforce hardening baselines and security controls for ESXi, servers, network devices, and middleware
  • Review and approve technical documentation (HLD, LLD, security requirements, test plans, SECOPS)
  • Manage requirements traceability for security aspects and ensure compliance through audits and reviews
  • Plan and supervise integration, validation, and acceptance testing of SOC components
  • Support incident response process design and integration of SIEM/SOAR capabilities
  • Interface with Customer’s stakeholders, auditors, and external bodies, ensuring transparency and compliance
  • Oversee the implementation of the virtualized infrastructure (VMware vSphere/ESXi, Horizon, storage, and networking)
  • Ensure integration of IAM and PAM solutions (e.g., RedHat, Oracle, CyberArk) into the SOC baseline
  • Supervise deployment and tuning of SOC core platforms: SIEM (Splunk/QRadar/LogPoint), SOAR (XSOAR), EDR solutions, Threat Intelligence, and Forensics tools
  • Conduct and validate security hardening activities at infrastructure and application levels
  • Support planning and execution of security audits, penetration testing, and compliance assessments
  • Maintain alignment with ECSS documentation requirements and systems engineering processes

Requirements

  • Preferably a degree in Computer Engineering or equivalent
  • At least 5 years of relevant experience a similar role (Solutions/Security Architect, Systems Engineer) and willing to broaden his/her reach
  • Previous experience in Space projects is recommended
  • Technical Skills: SOC Core : SIEM (Splunk, QRadar, LogPoint), SOAR (XSOAR), EDR/XDR (CrowdStrike, SentinelOne, Microsoft Defender ATP), Threat Intelligence (MISP, OpenCTI), Forensics (FTK, EnCase, Autopsy)
  • Infrastructure : VMware vSphere/ESXi, VDI (Horizon, Citrix), virtualized networking and storage
  • Access Management : IAM (RedHat, Oracle, Keycloak), PAM (CyberArk, Thycotic)
  • Network Security : Firewalls (Fortigate, Stormshield, Checkpoint), IDS/IPS (Suricata, Snort, Zeek)
  • Operating Systems : Linux (hardening, SELinux), Windows Server (AD, GPO, WSUS), container security (Docker, Kubernetes)
  • Standards : ECSS (E-ST-40, Q-ST-80, S-ST-00), ISO 27001, ISO 27035, ISO 22301
  • Knowledge of cybersecurity tools, applications and solutions (SIEM, SOAR, EDR, Cyber Threat Intelligence, Forensics, …), supported by hands-on experience on projects [nice to have]
  • Previous experience in Cybersecurity projects for Space Domain constitutes a strong preference; [nice to have] experience in dealing with Classified information (es. SECOPS, COMSEC, INFOSEC, previous experience in Classified projects)
Benefits
  • Availability to travel, long or short term within Europe, with the possibility to temporarily relocate in Belgium
  • Certifications such as CISSP, CISM, or equivalents are a plus

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
SOC architectureSIEMSOAREDRThreat IntelligenceForensicsVMware vSphereIAMPAMNetwork Security
Soft skills
decision-makingcoordinationtechnical consistencytransparencycompliance managementincident responseplanningsupervisioncommunicationcollaboration
Certifications
ECSSISO 27001ISO 27035ISO 22301