» » SOC SIEM Administrator

Friday, November 1, 2013

SOC SIEM Administrator

Posted by at
IBM Security Operations Center (SOC) is seeking a SIEM Administrator (Security Information and Event Management); an individual contributor to work within IBM Atlanta SOC. The SIEM Administrator creates, modifies and tunes the QRadar system rules to adjust the specifications of alerts and incidents. The SIEM administrator will work with the customers designated personnel to provide continual correlation rule tuning, incident classification and prioritization recommendations, report query adjustments, and various other configuration activities in order to help customers fully optimize the SIEM system capabilities as well as the audit and logging features of the event log sources. The SIEM Admin works closely with the assigned Managed Services SIEM resources to ensure client's customized solution is functioning optimally and is continuously tuned to the client's needs. Candidate must have enhanced professional, operational, and inter-personal skills to function effectively in collaborative high stakes and high stress situations with clients. The candidate must be able to prepare and provide training on complex administration of QRadar within a large MSSP environment. Candidate must be able to develop, follow, and integrate processes which scale to multiple customer environments. Candidate must possess skills that include TCP/IP fundamentals such as various OSI layers, UNIX routing protocols and technologies, technologies experience, strong understanding of security best practices, Windows/Unix-specific networking, proficiency with Q1 Radar, strong written and oral communications, must be detail oriented.

Required



  • High School Diploma/GED

  • At least 6 months experience in QRadar SIEM 7.1

  • At least 6 months experience in Managed SIEM Service wihtin a large MSSP environment

  • At least 2 years experience in IT Security

  • English: Fluent


Preferred



  • Bachelor's Degree

  • At least 1 year experience in QRadar SIEM 7.1

  • At least 1 year experience in Managed SIEM Service wihtin a large MSSP environment


IBM is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.






News Source
Labels: ,
Share this article :

0 comments:

Post a Comment

Subscribe to: Post Comments (Atom)
 
Copyright © . Search job listings to find a job online in USA - Posts · Comments
Theme Template by BTDesigner · Powered by Blogger