Sr. SIEM Engineer - QRadar & Splunk

Overview:Leading AI-driven Global Supply Chain Solutions Software Product Company and one of Glassdoor’s “Best Places to Work”Blue Yonder is seeking a Sr. SIEM Engineer in Security Tools & Engineering Team within SecOps Department. The primary responsibility is to Manage QRadar, Log-source on-boarding, Use case development, Playbook Development. Candidate will be directly responsible for handling all Project/operational activities, tasks and processes related to QRadar/Splunk.Scope:Sr. SIEM Engineer administer Plan, design, implement, monitor, Manage QRadar SIEM Tool that protect an organization’s computer systems and data.The Enterprise Security team currently comprises of 30+ members and is expected to grow rapidly. The incumbent will need to have leadership qualities also to mentor junior security associates in our team.What you’ll do:End to End Management of SIEM (QRadar) and Splunk technologySetup and configure new QRadar tools and configure policies.Data source integration,SIEM administrationParser development,Content developmentUse case development.Report, and Dashboard configuration.Engage in Security incident life cycle phases.Develop the playbook for defined use cases for SOC analyst.Rule Creation, Building block creation and fine tuning.For all the about products candidate is responsible forProduct UpgradesAct as POC for all product issues.Vendor Co-ordinationCo-ordinate with Stakeholder to troubleshoot any product related issuesPrepare SOPs, Ensure SLA is met.Provide Weekly and Monthly Metrics to the managementLead new projects independentlyWhat are we looking for:4 to 7 years of experience on SIEM tool IBM QRadar and Splunk.IBM QRadar SIEM administration and implementation.Strong skill set in Parser development for unsupported log sources/Custom log source integration.Log source integration with SIEM.IBM QRadar UBA administrationCandidate with Splunk ES experience will have additional advantage.Ability to multitask and work independently with minimal direction and maximum accountability.Must be proficient in scripting language PowerShell or Python.Intimate familiarity with Linux and windows platform and its command line utilities.Ability to reach to high pressure and challenging environment.Excellent customer service including strong written and oral communication skills.Bachelor’s degree in Information Security/Systems or related industry experience.Certifications such as IBM Certified Associate Administration and/or IBM Certified Deployment Professional.Good to have:Performs detailed analysis of alerts and potential threats.Performs daily detect & response functions, working closely with SOC functions.Maintains and documents the security control procedure, SOP & Play-book.Participates in Forensic investigations and computer security incident response.Leverages internal and external resource to research threats, vulnerabilities and intelligence on various attack vectors and attack infrastructure.Strong knowledge on ITIL processes like Incident, Problem & Change Management. ITIL V3 Foundation certification will be given preference.Our ValuesIf you want to know the heart of a company, take a look at their values. Ours unite us. They are what drive our success – and the success of our customers. Does your heart beat like ours? Find out here: Core ValuesDiversity, Inclusion, Value & Equality (DIVE) is our strategy for fostering an inclusive environment we can be proud of. Check out Blue Yonder's inaugural Diversity Report which outlines our commitment to change, and our video celebrating the differences in all of us in the words of some of our associates from around the world.All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status.