
SIEM and Security Architecture Engineer
Posted 4 hours ago

Posted 4 hours ago
This is a fully remote position, open to applicants in Ireland.
• Join our Global Engineering Network!
• Design and implement a robust IBM QRadar SIEM architecture that ensures resilience, scalability, and business continuity.
• Conduct platform sizing and capacity planning in accordance with log volume, EPS/FPS requirements, retention policies, and anticipated growth.
• Lead the deployment, configuration, and optimization of the IBM QRadar platform.
• Strategize and execute the migration from the current SIEM solution to IBM QRadar with minimal service disruption.
• Integrate, collect, parse, and normalize logs from various security devices, network infrastructure, servers, applications, cloud services, and endpoint solutions.
• Develop, tune, and maintain correlation rules, use cases, offenses, and detection content consistent with the MITRE ATT&CK framework.
• Enhance SIEM performance by minimizing false positives and increasing detection accuracy.
• Configure and manage access security systems, including Multi-Factor Authentication (MFA), LDAP / Active Directory integration, and Role-Based Access Control (RBAC).
• Ensure adherence to security standards and organizational policies.
• Create technical documentation, architecture diagrams, deployment guides, and operational procedures.
• Collaborate with SOC analysts, infrastructure teams, and cybersecurity stakeholders to continuously enhance monitoring and incident detection capabilities.
• Provide technical support, troubleshooting assistance, and knowledge transfer to operational teams.
• Bachelor's degree in Computer Science, Information Security, Engineering, or a related field.
• Demonstrated experience in designing, deploying, and administering IBM QRadar SIEM within enterprise environments.
• Strong knowledge of SIEM architecture, high-availability design, and platform sizing.
• Practical experience with SIEM migration projects.
• Comprehensive understanding of log collection, parsing, normalization, and event management.
• Experience in developing and tuning correlation rules and detection use cases aligned with the MITRE ATT&CK framework.
• Experience in integrating QRadar with LDAP/Active Directory, MFA, and Role-Based Access Control (RBAC).
• Strong grasp of cybersecurity principles, network security, and security monitoring.
• Excellent analytical, troubleshooting, and problem-solving abilities.
• Strong communication skills and the capability to collaborate with both technical and business stakeholders.
• Clearly defined scope with no ambiguity regarding deliverables.
• Opportunity for repeat engagements based on performance.
Baringa
Inetum
AddSales
IonQ
Get handpicked remote jobs straight to your inbox weekly.