Security Log management and SIEM administrator

Must-Have

1.Experience in implementing end to end log management solution preferably on IBM Qradar platform 

2.Hands on experience on Event collector, Processor and console deployments 

3.Strong Knowledge on custom property extraction and writing parsers for all un supported log sources  

4.Ability to resolve L3 techical issues and hands on experience for Upgrading the SIEM components

5. Strong knowledge and hands on experience on RHEL/Cent OS 

Good-to-Have

1.Good network and server infra technology background 

2 Experience in other SIEM platform (Arcsight) will be additional advantage 

3 Knowledge in rule creation and offense management 

4. Should have good knowledge of ISO standard & ITIL process

5. Good Presentation skill & Documentation activity

Responsibility of / Expectations from the Role 

1 Day to day Operations support for Qradar SIEM solution 

2 Proving L2/L3 troubleshooting for the Log management platform

3 Implement and onboard new log sources, and write parsing for unsupported log sources

4 Ability to learn and adapt new technologies in SIEM integration