Qradar Jobs (NOW HIRING)

Ventures Unlimited is a service centric organization. Our success begins with our ability to apply our relationships, leverage technologies, and identify talent - often in combination - to an endless array of real-world customer needs

Title: SIEM Qradar

Location : Milwaukee, WI [Open for Travel]

Type: Fulltime // Permanent 

Note: If you don't have QRADAR experience, Good SIEM Experience will also work

Job Description:

The SIEM Engineer is responsible for supporting the event logging and correlation needs of a large company. The person in this role will work as part of a security team responsible for protecting the company's IT assets.

This person will not only be experienced with the traditional use of SIEM tools such as QRADAR but will also be able to advise Company staff SIEM plans with an eye toward virtualization. This person needs to be very comfortable with all aspects of logging including the agents and should be able to troubleshoot logging problems either on the servers or workstations.

Essential Duties & Responsibilities

Support all aspects of Company's Security Information and Event Management initiative.

o Participate in the operation of QRADAR Security Information and Event Management systems to include QRADAR ESM, Logger appliances, Windows and Linux servers, network devices and backups.

o Configure rules within QRADAR ESM to correlate events from various devices throughout the network and identify anomalies that require further investigation.

o Participate in the design and implementation of QRADAR architecture upgrades and changes. 

o Establish plans to implement architecture changes.

o Life-cycle management of the QRADAR platforms including coordination and planning of upgrades, new deployments, and maintaining current operational data flows.

o Apply Configuration Management disciplines to maintain hardware/software revisions, QRADAR content, security patches, hardening, and documentation.

o Develop content for a complex and growing QRADAR infrastructure. This includes use cases for Dashboards, Active Channels, Reports, Rules, Filters, Trends, and Active Lists.

o Provide optimization of data flow using aggregation, filters, etc.

o Create periodic reports for management showing the health of the SIEM program.

o Working closely with Company team to maintain security requirements for operation of o QRADAR systems.

o Support all aspects of Company's Security Information and Event Management initiative.

o Drive the development and the establishment, enhancement, and continual improvement of an integrated set of correlation rules, alerts, searches, reports, and responses. 

o Responding to day-to-day security requests relating to QRADAR operations.

o Tunes QRADAR performance and event data quality to maximize QRADAR system efficiency.

o Assists with analyst using QRADAR and other tools to detect and respond to IT security incidents.

o Perform routine equipment checks and preventative maintenance.

o Act as SME for all questions related to the QRADAR SIEM implementation.

o Maintaining up to date documentation of designs/configurations.

o Create shell and perl scripts to facilitate automated tasks.

o Work with other Service Providers to support areas of common interest.

o Working with software and hardware vendors.

o On-call support may be required.

o Perform other duties as assigned. 

Desired Skills and Experience

o BS in Computer Science or equivalent experience and education 

o A minimum of five years of experience as a security generalist 

o At least one year of experience using QRADAR or three or more years working with another SIEM product 

o Familiarity with the client application Snare 

o Understanding of logging on various operating systems including Windows and *nix 

o A basic understanding of networking principles 

o Strong written and verbal communication skills 

o CISSP or QRADAR or GCIA certification

Preferred Knowledge and Skills

o Bachelor's Degree

o Experience acquired through working in a large IT environment o Understanding of ITIL standards

o BS in Computer Science or equivalent experience and education 

Contact me at 856-842-1988 Ext-No: 157 for more details