AM | SIEM | Delhi | Cyber Defense & Resilience

Job Summary:The SIEM QRadar Engineer is responsible for deploying, configuring, and managing IBM QRadar SIEM solutions to monitor, analyze, and respond to security events and incidents across the enterprise. This role requires a strong understanding of cybersecurity principles, event management, and log analysis to provide real-time monitoring, threat detection, and incident investigation.Key Responsibilities:1. QRadar Platform Configuration & Administration:- Implement and configure IBM QRadar SIEM, including the integration of log sources (firewalls, servers, IDS/IPS, etc.).- Administer and maintain QRadar appliances, including updating, patching, and tuning for performance.- Ensure the proper setup of security event collection, parsing, normalization, and storage.2. Security Monitoring & Incident Response:- Monitor QRadar dashboards and alerts for security incidents and potential threats.- Investigate and triage security incidents, escalating as necessary, and providing detailed reports for remediation.- Create and fine-tune custom rules, offenses, and alerts to improve threat detection accuracy.3. Log Source Management:- Configure and manage log source integrations, including forwarders, collectors, and data processing.- Work with teams across the organization to identify and collect relevant logs for security monitoring.4. Correlation Rules and Customization:- Develop, maintain, and optimize correlation rules to detect suspicious activities.- Work with security analysts to develop custom use cases and refine QRadar correlation capabilities.5. Threat Intelligence and Data Integration:- Integrate threat intelligence feeds into QRadar for enhanced detection of external threats.- Leverage external data sources and QRadars built-in capabilities to identify emerging threat patterns.6. Reporting and Documentation:- Generate reports for management, compliance audits, and regulatory requirements.- Document configurations, rules, processes, and troubleshooting steps for knowledge sharing and incident response procedures.7. Collaboration & Support:- Work closely with IT and cybersecurity teams to integrate new systems and optimize SIEM operations.- Assist in the development of incident response playbooks and provide expertise during security incidents.Required Skills & Qualifications:Experience:- Minimum of 3-5 years of experience in SIEM engineering security (preferably IBM QRadar).- Experience in incident response, threat hunting, and using security monitoring tools.Technical Skills:- Strong understanding of SIEM concepts and security event management.- In-depth knowledge of the QRadar platform (administration, configuration, and optimization).- Familiarity with network security protocols, firewalls, IDS/IPS systems, and security appliances.- Experience with Linux/Unix operating systems and basic scripting (Python, Bash, etc.) for automation or customization.Certifications : IBM QRadar certification.