QradarPersistent

JD QradarSIEM implementationSME
JobDescription Minimum8 years of fulltime experience in cybersecurity experience.Proficient ExperienceinDesign Deploymentand Management of several SIEM solutions like IBM QRadar (Preferably)SplunkSecuronix Exabeam Azure Sentinel.Splunk ProficientExperience in SOAR Integrations. Proficient understanding of ITinfrastructureandsecurity.Proficient understanding of Security Operation procedures andprocesses.Detailedknowledgein system security architecture and securitysolutionsResponsibilities:35 years of experience in deploying and managing SIEM and more 610years of experienceinCyber Securityand SOC operations6 years' experience in Architecting administrating andmaintaining several SIEM solutionslikeIBM QRadarSecuronix Exabeam Azure Sentinel. Configure administer and manageseveralSIEMsolutions like IBM QRadar ( Preferably) Azure Sentinel SplunkSecuronix Exabeam.Identify and implement Security use cases and develops correlationand detection ruleswithinSIEM solution(IBM QRadar) reports and dashboards to detect emergingthreats. Developinformation security and incident response workflows procedures andbestpractices andpublish them as playbooks in IBM Qradar SOARplatform. Integrateonprem and cloud data sources using various data connectionmethods.Createcustom dataconnectors for nonstandard technologies deployed in the techstack. Responsiblefor writing and developing custom scripts reports and programs asneeded Identifyandestablish metrics.Responsible for proper operation tuning and performance of SIEMcorrelation EnginesPrepare documentation for all analytics and data connectors.Prepare workbooks forSOCOperations CIRTto track incidents and remediationefforts. Prepareautomation playbooks to improve the efficiency of incidentresponse. Responsibleforwriting RunbooksStandard Operating Procedures (SOPs) and designdocuments.Responsible for preparing architecture HLD andLLD. Responsiblefor delivering the endtoend IBM QRadar security architecture anddesignartifactsRecommendsand participates in the design and implementation of standardstoolsandmethodologies.Good analytical and communication Tools Knowledge. IBM QRadar(QRoc)SplunkSecuronix Azure Sentinel Exabeam IBM ResilientCyware
RequiredTechnical and ProfessionalExpertise:
7 years of experience in IT security with at least 5 Years inSOC. Mindset ofcyber security Engineer but leverage that in Implementationprofile. Expertisein Security Device Management SIEM Qradar incident response LogsourceintegrationUse case Development with special focus on custom use casesdeviceintegrationAPI log source integration SOAR playbooksdevelopment.Proficient in incident response processes detection triage incidentanalysisremediationandreporting Abilityto multitask and work independently with minimal direction andmaximumaccountability.
MustHave SkillsIncidentManagement Security Qradar SIEM Use case development/Alert Finetuning APIIntegrationsLogsource integration QRADAR SOAR Playbook development EPS mangementPerformanceAnalyticsRemediationAutomationSIEM

siem,splunk,incidentresponse,azure,soc,cybersecurity,reporting,incident management,itinfrastructure,information security

---