QRadar Engineer and Architect, Lead

Key Role:
Lead consulting engagements focused on assessment, architecture, and deployment of enterprise-scale Qradar solutions including operational development and providing oversight for entire Qradar eco system. Provide architecture-level design to support and operate enterprise TDO (Threat Defense Operation) and SIEM (Security Information and Event Management) using industry best practices. Design Qradar systems to meet growth while maintaining the balance between performance, stability, and agility. Manage customer expectations, integrate Qradar with various enterprise security stacks, support security logging for on-prem or in the cloud and assist with the development of advanced KPIs and metrics to meet the requirements of key stakeholders. Conduct research in areas driven by customer use cases, architect and support systems used to configure and deploy enterprise SIEM solutions and develop automation for threat defense and incident response. This position requires travel up to 80% of the time.

Basic Qualifications:
-5+ years of experience with IT infrastructure, networking, architecture, administration, or security

-3+ years of experience with Qradar architecture or deployment for a large-scale enterprise environment

-Experience with automation technologies including CI/CD pipelines, deployment tools, or scripting
-Knowledge of Qradar and integration of the threat intelligence platform (TIP) security orchestration, automation and response (SOAR), or Windows Event Collection (WEC)
-Knowledge of enterprise logging, including application, OS, or security technology logging

-Knowledge of Active Directory, Windows security, endpoint security, IDS/IPS, or security tools

-Ability to multitask and solve complex technical problems
-Ability to travel up to 80% of the time
-HS diploma or GED

Additional Qualifications:

-Experience with working in a commercial consulting or professional services environment
-Experience with infrastructure management and support and system administration in Windows and UNIX environments
-Experience with enterprise-scale operations and maintenance environments

-Experience with Linux shell scripting, Python, and Regex preferred
-Experience with security tools, including Firewall, IDS, Active Directory, Nmap, Burp, Proxy, Bro, or Endpoint technologies
-Experience with Cloud Solution build preferred

-Knowledge of networking protocols
-BA or BS degree in CS, IT, or in a related field

-Cybersecurity Certifications, including CISSP, CEH or GIAC a plus

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, veteran status, or other protected characteristic—to fearlessly drive change.

#LI-AH1, CJ1

Not ready to apply? Join our talent community and sign up for job alerts.