Description
Security Architecture - IT Security - SIEM - Q-radar - ITSM - SOC
I am looking for an SIEM Consultant to work on site with my globally recognized Software company on an interim basis in Prague.
The post holder will have ;
- 4-7 years of experience
- 2-3 years of experience on SIEM administration
- Experience in design and installation of large scale deployment of SIEM
- Application and device integration experience
- The candidate should have understanding of SIEM licensing and sizing (EPS, device count, etc.)
- Ensure proper working of SIEM (performance, security, availability)
- Troubleshoot SIEM platform related issues
- Experience in fresh SIEM HA based deployments with EPS capacity
- Ability to write Custom DSM for unsupported Log sources
- Ability to write correlation rules based on Business use cases independently
- Deployment & Maintenance experience in Data node, Qflow, QVM in HA
- Making sure backup is taken timely
- Install patches and upgrade the platform to new version
- Experience in integrating Q-radar with ITSM tool
- SOC analyst certification is a plus.
- Strong interpersonal and presentation skills
- Ability to work with minimal levels of supervision or oversight
Note there is no scope for remote working - candidates MUST be able to work 5 days per week in Prague for a minimum of 6 months.