Job Description

Project Role :

Security Delivery Lead

Project Role Description :

Leads the implementation and delivery of Security Services projects, leveraging our global delivery capability (method, tools, training, assets).

Must have skills :

Security Information and Event Management (SIEM)

Good to have skills :

NA

Minimum

12

year(s) of experience is required

Educational Qualification :

15 years full time education



Summary: The QRadar SIEM Operations Manager is responsible for leading the Security Incident and Event Monitoring function using IBM QRadar. This role involves managing SOC analysts (L1-L3), optimizing SIEM capabilities, ensuring timely incident response, and aligning operations with business and compliance requirements. Roles & Responsibilities: o Lead and manage the QRadar SIEM operations team (L1, L2, L3 analysts) o Oversee end-to-end incident detection, triage, investigation, and response workflows o Define and implement QRadar use cases, correlation rules, and offense tuning strategies o Ensure integration of relevant log sources and maintain SIEM health and performance o Drive continuous improvement in threat detection, false positive reduction, and rule optimization o Collaborate with threat intelligence, vulnerability management, and incident response teams o Prepare and present executive-level reports on incident trends, threat posture, and SOC KPIs o Ensure compliance with internal policies and external regulations (ISO 27001, NIST, GDPR, etc.) o Conduct regular training, mentoring, and performance reviews for SOC team members o Participate in audits, red/blue team exercises, and tabletop simulations Professional & Technical Skills: o 8+ years of experience in cybersecurity, with 3+ years in SOC leadership roles o Deep expertise in IBM QRadar SIEM (architecture, deployment, rule creation, offense management) o Strong understanding of threat detection frameworks (MITRE ATT&CK, kill chain, etc.) o Experience in managing 24x7 SOC operations and incident response teams o Familiarity with SOAR platforms, threat intelligence feeds, and forensic tools o Excellent communication, stakeholder management, and reporting skills o Bachelor's or Master's degree in Computer Science, Information Security, or related field o Preferred certifications: o IBM QRadar Certified Deployment Professional o CISSP, CISM, GIAC (GCIA, GCIH), CEH Additional Information: o Experience in MSSP or multi-tenant environments o Exposure to cloud SIEM integrations (Azure Sentinel, AWS GuardDuty) o Knowledge of automation and orchestration in SOC workflows




15 years full time education