Security Architect

Project Role : Security Architect
Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations.
Must have skills : Security Information and Event Management (SIEM)
Good to have skills : NA
Minimum 5 year(s) of experience is required
Educational Qualification : 15 years full time education

Summary: The QRadar L3 Security Analyst is a senior member of the SOC team, responsible for leading complex investigations, optimizing SIEM use cases, and driving threat detection and response strategies. This role requires deep expertise in QRadar, threat intelligence, and incident response. Roles & Responsibilities: • Lead investigation and response for high-severity security incidents • Design, implement, and optimize QRadar correlation rules, offenses, and custom use cases • Integrate new log sources and ensure complete visibility across the environment • Perform threat hunting using QRadar and external threat intelligence feeds • Conduct forensic analysis and root cause investigations for advanced threats • Collaborate with SOC, IR, and threat intelligence teams to improve detection capabilities • Develop and maintain QRadar dashboards, reports, and offense workflows • Mentor L1 and L2 analysts and conduct training sessions • Participate in red/blue team exercises and tabletop simulations • Ensure compliance with security policies, standards, and regulatory requirements Professional & Technical Skills: • 5+ years of experience in SOC or cybersecurity operations • Expert-level knowledge of IBM QRadar SIEM (architecture, rule tuning, log source integration) • Strong understanding of MITRE ATT&CK, kill chain, and threat modeling • Experience with forensic tools, malware analysis, and packet capture analysis • Proficiency in scripting (Python, Bash, Regex) for automation and log parsing • Familiarity with SOAR platforms and integration with QRadar • Strong analytical, problem-solving, and communication skills Additional Information: • Experience in MSSP or multi-tenant environments • Exposure to cloud SIEM integrations (Azure Sentinel, AWS GuardDuty) • Knowledge of compliance frameworks (ISO 27001, NIST, PCI-DSS, GDPR) • Bachelor’s or Master’s degree in Computer Science, Information Security, or related field • Preferred certifications: o IBM QRadar Certified Deployment Professional o GIAC (GCIA, GCIH), CISSP, CEH, CHFI

15 years full time education