QRadar Suite SOAR Consultant

  • Posted 22 days ago | Updated 17 days ago

Overview

Remote
$0 - $0
Accepts corp to corp applications
Contract - W2
Contract - Independent
Contract - 2 Month(s)
Able to Provide Sponsorship

Skills

QRADAR SOAR
Python
Linux
VPN

Job Details

100% Remote

Job Description:

1. QRadar SOAR (Resilient) Expertise

o Incident response workflows

o Playbook creation and customization

o Integration with QRadar SIEM

o Custom scripts using Python within playbooks

2. SIEM Knowledge

o IBM QRadar SIEM architecture

o Offense management and correlation rules

o AQL (Ariel Query Language)

o Log source management

3. Scripting & Automation

o Python (primarily for playbooks and integrations)

o RESTful API development and integration

o JSON handling

4. Security Tools Integration

o Firewalls, EDR (e.g., CrowdStrike, Carbon Black), Antivirus, Threat Intel

o Ticketing systems (e.g., ServiceNow, JIRA)

o Email systems (e.g., Exchange, O365)

o Identity & Access tools (e.g., Okta, LDAP)

5. Operating Systems

o Linux (for QRadar and Resilient environments)

o Windows (for endpoint integrations)

6. Networking Knowledge

o TCP/IP, ports, protocols

o IDS/IPS systems

o Proxy and VPN logs understanding

Deployment & Architecture

1. Installation & Upgrades

o QRadar SOAR (Resilient) platform installation, HA, DR

o AppHost and integration server setup

2. Custom Integration Development

o Building custom connectors or apps for 3rd-party tools

o Docker container management (optional but useful)

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

About intiGrow