SIEM / SOC / Security Engineer

Summary: The role of SIEM / SOC / Security Engineer involves managing the SIEM platform with IBM QRadar and/or Palo Alto XSIAM, ensuring the delivery of Managed Security Services to a State Government client. The engineer will lead daily interactions with project teams and cybersecurity staff, manage platform health, and perform necessary upgrades. Hands-on experience with QRadar and configuration is essential, as well as the ability to add new log sources and conduct security scans. The position is remote and classified as outside IR35.

Key Responsibilities:

• Primary engineer managing SIEM platform with IBM QRadar and/or Palo Alto XSIAM and supporting delivery for Managed Security Services to a State Government client to provide timely, accurate, planned completion and implementation of security services, which must be available for 24x7x365 support.
• Leads primary day-to-day SIEM interactions with project team and State cybersecurity staff. Manages platform health, performs upgrades, including managing deployed sensors and collectors. Interacts with SOC analysts to tune alerts and use cases, to include integrations with client.
• Previous hands-on QRadar engineering and configuration experience required as system will be undergoing platform upgrades. Any Palo Alto XSIAM training.
• Adding new log sources to existing QRadar and/or XSIAM, configure use cases, alerts, etc.
• Perform QVM scans.
• Conduct Nessus SCSEM scans.

Key Skills:

• IBM QRadar SIEM
• Nessus
• Palo Alto EDR
• Palo Alto XDR
• SIEM
• SOC/SIEM
• Use cases
• Supporting
• Palo Alto XSIAM
• Cribl
• Experience working for government project is preferred.

Salary (Rate): undetermined

City: undetermined

Country: USA

Working Arrangements: remote

IR35 Status: outside IR35

Seniority Level: undetermined

Industry: IT