Job Description:
The candidate should have sound knowledge and experience in:
- QRadar architecture.
- QRadar deployment architecture.
- QRadar cloud architecture.
- Using QRadar reference data collections.
- Advanced search using AQL and its use cases.
- Knowledge in configuring the QRadar log source and parsing order.
- QRadar SIEM log source custom properties.
- How to configure rule actions in QRadar SIEM.
- Managing custom rules in QRadar SIEM.
- How to locate rules that triggered in QRadar SIEM.
- Creating custom log sources in QRadar SIEM.
- Utilizing the log event extended format (LEEF) and CLF in QRadar.
- QRadar SIEM API.
- QRadar SIEM integration & extension.
- Event mapping and creation of custom DSM.
- QRadar troubleshooting.
- Configuring roles and security profiles in QRadar.
- Integration of different log sources on the QRadar appliance.
- Experience in creation of dashboards to monitor the behavioral of network and traffic flow.
- Adequate knowledge of UNIX/ LINUX platform and strong fundamentals.
- Knowledge in AWS and QRoC.
- Shell scripting.
- Firewall and proxy configuration.
Good To Have:
- Knowledge in QRadar App development.
- Packaging and exporting of extensions.
- Any programming language like Java or Python.
Learn more about our Security Engineering Services.