Role: - IBM QRadar SME – L3
Location: -REMOTE IN USA – MUST WORK AS PER CST Times – from 8 AM CST (Occasional travel to client site as needed)
Need 10+ Years of experience
Years of Experience
- 10+ years of IT industry experience working with large organizations in infrastructure / IT Security
General Description
- Provide technical expertise to customer for Qradar (SIEM) to support security operations.
- Coordinate SIEM platform integration efforts across multiple business units as part of design/implementation.
- Implement Qradar integration involving IaaS, PaaS and SaaS of Azure Gov Cloud
- Prepare reports, summaries, and other forms of communication that may be both internal and client facing.
- Coordination with customer SOC teams
- Maintaining familiarity with industry trends and security best practices like MITRE Att&ck framework, Azure security that can be leveraged for customizing SIEM platform for investigation and response.
- Design and Implementation expertise on integrating SIEM platform with Azure Cloud as per best practices.
- Exhibit SIEM platform engineering expertise.
Technical Requirements
- Very strong skills with IBM Radar with strong ability to architect, design and deploy in Enterprise environments.
- Strong skills in all relevant functions of Qradar used for Security operations.
- Strong skills in conceptualizing, designing and building dashboards using Qradar
- Very strong hands-on skills on automation and response features and associated configuration aspects (Phantom)
- Very good experience/knowledge on SIEM UBA capability and Orchestration
- Skill in understanding Azure technologies and its integrations to SIEM.
- Knowledge of SIEM platforms and their architecture.
Soft Skills
- Strong verbal and written communication skills
- Experience in working with security stakeholders and other senior security leaders
- Interface with client stakeholders on technical requirements to improve and build the Qradar platform.
- Effectively communicate/present security concepts with both technical and non-technical individuals
- Open for business travel at short notice
Certifications
- Certified in IBM Qradar
- CISSP/CISM certification preferable
Educational Qualifications
- University degree in IT or/and IT Security
