Security Consultant - SOAR
IBM
Security Consultant - SOAR
Job Description
Security Consultant - SOAR
📋 Job Overview
The Security Consultant - SOAR role at IBM involves working with clients to enhance their security posture using IBM's technology platforms. The position requires hands-on experience with Qradar SIEM and SOAR tools, and focuses on advanced investigation, threat hunting, and incident management within a SOC environment.
📍 Location: Mumbai, IN
💼 Career Level: Professional
🎯 Key Responsibilities
- Experience in advance investigation, triaging, analysis and escalation of security incidents with recommendations
- Hands-on basic experience with configurations and management of SIEM tools(Qradar) including log source integrations, custom parser built, fine tuning and optimizing the correlation rules and use cases recommendations
- Proven Experience on any of the Security information and event management (SIEM) tools using Qradar
- Data-driven threat hunting using SIEM, EDR and XDR tools
- Basic Experience is SOAR tools such as Qradar Resilient, PaloAlto XSOAR
- Identify quick defence techniques till permanent resolution
- Recognize successful intrusions and compromises through review and analysis of relevant event detail information
- Review incidents escalated by Level 1 analysts
- Launch and track investigations to resolution. Recognize attacks based on their signatures, differentiates false positives from true intrusion attempts
- Actively investigates the latest in security vulnerabilities, advisories, incidents, and penetration techniques and notifies end users when appropriate
- Identify the gaps in security environment & suggest the gap closure
- Drive & Support Change Management
- Performs and reviews tasks as identified in a daily task list
- Report Generation and Trend Analysis. Participate in the Weekly and Monthly governance calls to support the SOC metrics reporting
✅ Required Qualifications
- 5+ Years Hands-on experience required in Qradar SIEM and SOAR
- Bachelor’s degree in engineering/information security, or a related field
- Relevant certifications such as CEH, CISSP, CISM, CompTIA CASP+, or equivalent
- Proven experience to work in a SOC environment
⭐ Preferred Qualifications
- Experience in Threat hunting, Threat intelligence
- Worked on tools belongs to Qradar, UEBA, UAX
- Good to have hands on experience with managing SIEM solutions on public/private clouds like Amazon AWS, Microsoft Azure, etc.
- Willing to work in 24x7 rotational shift model including night shift
🛠️ Required Skills
- Strong analytical and problem-solving skills
- Excellent communication and collaboration abilities
- Ability to work in a fast-paced, dynamic environment
- Deep technical knowledge of security technologies and advanced threat landscapes
- Qradar SIEM
- SOAR
- SIEM tools
- EDR
- XDR
- Qradar Resilient
- PaloAlto XSOAR
- UEBA
- UAX
- Amazon AWS
- Microsoft Azure
🎁 Benefits & Perks
- Career growth and development opportunities
- Encouragement to challenge the norm and investigate ideas outside of role
- Environment that embraces unique skills and experience
- Continuous trust and support in an inclusive environment
Locations
- Mumbai, IN, India
Salary
Estimated Salary Rangemedium confidence
2,500,000 - 4,200,000 INR / yearly
Source: ai estimated
* This is an estimated range based on market data and may vary based on experience and qualifications.
Skills Required
- Strong analytical and problem-solving skillsintermediate
- Excellent communication and collaboration abilitiesintermediate
- Ability to work in a fast-paced, dynamic environmentintermediate
- Deep technical knowledge of security technologies and advanced threat landscapesintermediate
- Qradar SIEMintermediate
- SOARintermediate
- SIEM toolsintermediate
- EDRintermediate
- XDRintermediate
- Qradar Resilientintermediate
- PaloAlto XSOARintermediate
- UEBAintermediate
- UAXintermediate
- Amazon AWSintermediate
- Microsoft Azureintermediate
Required Qualifications
- 5+ Years Hands-on experience required in Qradar SIEM and SOAR (experience)
- Bachelor’s degree in engineering/information security, or a related field (experience)
- Relevant certifications such as CEH, CISSP, CISM, CompTIA CASP+, or equivalent (experience)
- Proven experience to work in a SOC environment (experience)
Preferred Qualifications
- Experience in Threat hunting, Threat intelligence (experience)
- Worked on tools belongs to Qradar, UEBA, UAX (experience)
- Good to have hands on experience with managing SIEM solutions on public/private clouds like Amazon AWS, Microsoft Azure, etc. (experience)
- Willing to work in 24x7 rotational shift model including night shift (experience)
Responsibilities
- Experience in advance investigation, triaging, analysis and escalation of security incidents with recommendations
- Hands-on basic experience with configurations and management of SIEM tools(Qradar) including log source integrations, custom parser built, fine tuning and optimizing the correlation rules and use cases recommendations
- Proven Experience on any of the Security information and event management (SIEM) tools using Qradar
- Data-driven threat hunting using SIEM, EDR and XDR tools
- Basic Experience is SOAR tools such as Qradar Resilient, PaloAlto XSOAR
- Identify quick defence techniques till permanent resolution
- Recognize successful intrusions and compromises through review and analysis of relevant event detail information
- Review incidents escalated by Level 1 analysts
- Launch and track investigations to resolution. Recognize attacks based on their signatures, differentiates false positives from true intrusion attempts
- Actively investigates the latest in security vulnerabilities, advisories, incidents, and penetration techniques and notifies end users when appropriate
- Identify the gaps in security environment & suggest the gap closure
- Drive & Support Change Management
- Performs and reviews tasks as identified in a daily task list
- Report Generation and Trend Analysis. Participate in the Weekly and Monthly governance calls to support the SOC metrics reporting
Benefits
- general: Career growth and development opportunities
- general: Encouragement to challenge the norm and investigate ideas outside of role
- general: Environment that embraces unique skills and experience
- general: Continuous trust and support in an inclusive environment
Tags & Categories
Security Consultant - SOAR
IBM
Security Consultant - SOAR
Job Description
Security Consultant - SOAR
📋 Job Overview
The Security Consultant - SOAR role at IBM involves working with clients to enhance their security posture using IBM's technology platforms. The position requires hands-on experience with Qradar SIEM and SOAR tools, and focuses on advanced investigation, threat hunting, and incident management within a SOC environment.
📍 Location: Mumbai, IN
💼 Career Level: Professional
🎯 Key Responsibilities
- Experience in advance investigation, triaging, analysis and escalation of security incidents with recommendations
- Hands-on basic experience with configurations and management of SIEM tools(Qradar) including log source integrations, custom parser built, fine tuning and optimizing the correlation rules and use cases recommendations
- Proven Experience on any of the Security information and event management (SIEM) tools using Qradar
- Data-driven threat hunting using SIEM, EDR and XDR tools
- Basic Experience is SOAR tools such as Qradar Resilient, PaloAlto XSOAR
- Identify quick defence techniques till permanent resolution
- Recognize successful intrusions and compromises through review and analysis of relevant event detail information
- Review incidents escalated by Level 1 analysts
- Launch and track investigations to resolution. Recognize attacks based on their signatures, differentiates false positives from true intrusion attempts
- Actively investigates the latest in security vulnerabilities, advisories, incidents, and penetration techniques and notifies end users when appropriate
- Identify the gaps in security environment & suggest the gap closure
- Drive & Support Change Management
- Performs and reviews tasks as identified in a daily task list
- Report Generation and Trend Analysis. Participate in the Weekly and Monthly governance calls to support the SOC metrics reporting
✅ Required Qualifications
- 5+ Years Hands-on experience required in Qradar SIEM and SOAR
- Bachelor’s degree in engineering/information security, or a related field
- Relevant certifications such as CEH, CISSP, CISM, CompTIA CASP+, or equivalent
- Proven experience to work in a SOC environment
⭐ Preferred Qualifications
- Experience in Threat hunting, Threat intelligence
- Worked on tools belongs to Qradar, UEBA, UAX
- Good to have hands on experience with managing SIEM solutions on public/private clouds like Amazon AWS, Microsoft Azure, etc.
- Willing to work in 24x7 rotational shift model including night shift
🛠️ Required Skills
- Strong analytical and problem-solving skills
- Excellent communication and collaboration abilities
- Ability to work in a fast-paced, dynamic environment
- Deep technical knowledge of security technologies and advanced threat landscapes
- Qradar SIEM
- SOAR
- SIEM tools
- EDR
- XDR
- Qradar Resilient
- PaloAlto XSOAR
- UEBA
- UAX
- Amazon AWS
- Microsoft Azure
🎁 Benefits & Perks
- Career growth and development opportunities
- Encouragement to challenge the norm and investigate ideas outside of role
- Environment that embraces unique skills and experience
- Continuous trust and support in an inclusive environment
Locations
- Mumbai, IN, India
Salary
Estimated Salary Rangemedium confidence
2,500,000 - 4,200,000 INR / yearly
Source: ai estimated
* This is an estimated range based on market data and may vary based on experience and qualifications.
Skills Required
- Strong analytical and problem-solving skillsintermediate
- Excellent communication and collaboration abilitiesintermediate
- Ability to work in a fast-paced, dynamic environmentintermediate
- Deep technical knowledge of security technologies and advanced threat landscapesintermediate
- Qradar SIEMintermediate
- SOARintermediate
- SIEM toolsintermediate
- EDRintermediate
- XDRintermediate
- Qradar Resilientintermediate
- PaloAlto XSOARintermediate
- UEBAintermediate
- UAXintermediate
- Amazon AWSintermediate
- Microsoft Azureintermediate
Required Qualifications
- 5+ Years Hands-on experience required in Qradar SIEM and SOAR (experience)
- Bachelor’s degree in engineering/information security, or a related field (experience)
- Relevant certifications such as CEH, CISSP, CISM, CompTIA CASP+, or equivalent (experience)
- Proven experience to work in a SOC environment (experience)
Preferred Qualifications
- Experience in Threat hunting, Threat intelligence (experience)
- Worked on tools belongs to Qradar, UEBA, UAX (experience)
- Good to have hands on experience with managing SIEM solutions on public/private clouds like Amazon AWS, Microsoft Azure, etc. (experience)
- Willing to work in 24x7 rotational shift model including night shift (experience)
Responsibilities
- Experience in advance investigation, triaging, analysis and escalation of security incidents with recommendations
- Hands-on basic experience with configurations and management of SIEM tools(Qradar) including log source integrations, custom parser built, fine tuning and optimizing the correlation rules and use cases recommendations
- Proven Experience on any of the Security information and event management (SIEM) tools using Qradar
- Data-driven threat hunting using SIEM, EDR and XDR tools
- Basic Experience is SOAR tools such as Qradar Resilient, PaloAlto XSOAR
- Identify quick defence techniques till permanent resolution
- Recognize successful intrusions and compromises through review and analysis of relevant event detail information
- Review incidents escalated by Level 1 analysts
- Launch and track investigations to resolution. Recognize attacks based on their signatures, differentiates false positives from true intrusion attempts
- Actively investigates the latest in security vulnerabilities, advisories, incidents, and penetration techniques and notifies end users when appropriate
- Identify the gaps in security environment & suggest the gap closure
- Drive & Support Change Management
- Performs and reviews tasks as identified in a daily task list
- Report Generation and Trend Analysis. Participate in the Weekly and Monthly governance calls to support the SOC metrics reporting
Benefits
- general: Career growth and development opportunities
- general: Encouragement to challenge the norm and investigate ideas outside of role
- general: Environment that embraces unique skills and experience
- general: Continuous trust and support in an inclusive environment
Tags & Categories