100% Remote 1. QRadar Platform Expertise Architecture and components (Console, Event Collectors, Event Processors, Flow Collectors, Data Nodes) Log source integration and configuration Custom rules and building offenses Use Case Manager app and AQL (Advanced Query Language) DSM (Device Support Modules) tuning and extension Flow data and QFlow/QNi Offense management and tuning Asset profiles and identity integration 2. SIEM & Security Fundamentals Knowledge of security event types (e.g., logs fro
100% Remote Job Description: 1. QRadar SOAR (Resilient) Expertise o Incident response workflows o Playbook creation and customization o Integration with QRadar SIEM o Custom scripts using Python within playbooks 2. SIEM Knowledge o IBM QRadar SIEM architecture o Offense management and correlation rules o AQL (Ariel Query Language) o Log source management 3. Scripting & Automation o Python (primarily for playbooks and integrations) o RESTful API development and integration o JSON handling 4. Sec
