Talent.com
QRadar SIEM Administrator

QRadar SIEM Administrator

ConfidentialPune
30+ days ago
Job description

Inspira Enterprise India is seeking a highly skilled and experienced QRadar SIEM Administrator to join our dedicated cybersecurity team. The ideal candidate will possess proven expertise in the deployment, configuration, and administration of IBM QRadar SIEM environments . This role is crucial for ensuring robust log collection, system health, and optimizing security use cases to enhance threat detection and incident response capabilities for our clients.

Key Responsibilities

  • Deploy, configure, and administer IBM QRadar SIEM environments , ensuring optimal performance, scalability, and high availability.
  • Perform comprehensive data source onboarding and integration , ensuring successful and accurate log collection from diverse systems such as Windows servers, Linux machines, firewalls, network devices (routers, switches), and other security tools.
  • Continuously monitor system health and performance of QRadar components, ensuring proper event flow, data parsing, and correlation.
  • Work closely with Security Operations Center (SOC) teams to develop, test, and optimize security use cases, rules, and correlation logic for enhanced threat detection.
  • Provide expert support and troubleshooting for all QRadar-related issues and incidents, ensuring rapid resolution and minimal disruption.
  • Collaborate effectively with clients and internal stakeholders to understand their security requirements and deliver appropriate, tailored SIEM solutions.
  • Meticulously document deployment steps, configurations, and standard operating procedures (SOPs) for QRadar operations and incident response.
  • Continuously assess and improve SIEM configurations and rule tuning for enhanced detection capabilities, reducing false positives and improving alert fidelity.
  • Maintain up-to-date knowledge of SIEM technologies, emerging security trends, and the evolving threat landscape to proactively enhance QRadar capabilities.

Preferred Candidate Profile

  • QRadar Expertise : Proven experience in QRadar SIEM administration and deployment , demonstrating hands-on proficiency with the platform's features and functionalities.
  • SIEM Fundamentals : Strong knowledge of SIEM fundamentals (e.g., event collection, normalization, correlation, reporting) and practical experience with security operations workflows and incident lifecycle.
  • Operating Systems : Hands-on experience with both Linux and Windows operating systems for log management, agent deployment, and basic troubleshooting.
  • Data Integration : Proficiency in data source integration and log ingestion techniques from various technologies and platforms.
  • Security Operations : Good understanding of SOC use cases, incident response methodologies, and threat detection strategies .
  • Analytical Skills : Strong analytical and problem-solving skills to diagnose complex technical issues and optimize SIEM performance.
  • Communication & Stakeholder Management : Excellent customer communication and stakeholder management skills, with the ability to convey technical information clearly and build strong relationships.
  • Documentation : Demonstrated ability to create detailed, clear, and concise technical documentation for configurations, procedures, and troubleshooting guides.

    • Skills Required

    Ibm Qradar, Siem Tools, Security Operation Center, Operating Systems, Data Integration, Analytical Skills

    Create a job alert for this search

    Administrator • Pune