Verizon Principal QRadar Engineer in Phoenix, Arizona
What you’ll be doing...
Verizon Enterprise Solutions, the authors of the industry renowned Data Breach Investigations Report (DBIR) and home to one of the world's largest Internet backbones, is adding a Principal QRadar Engineer to work as an integral part of our Advanced Security Operations Center. This position comes with management commitment and encouragement to foster your growth, learning, and breadth of skills. You will be responsible for managing QRadar (also known as JSA and STRM) implementation to include use case creation, dashboards, tuning and log source optimization. You will work closely with one of our larger clients to improve and showcase their QRadar implementation.
Creating new use cases or correlation rules to detect suspicious and malicious traffic.
Tuning existing correlation rules to eliminate noise and false positives.
Creating custom alert schema, reports, and dashboards.
Validating log sources and indexed data, and searching through indexed data to optimize search criteria.
Occasionally travelling to the customer’s site in California for consultative sessions.
Integrating and optimizing intelligence feeds into QRadar.
Optimizing net flow and packet analysis capabilities.
What we’re looking for...
You’ll need to have:
Bachelor's degree or four or more years of work experience.
Six or more years of relevant work experience.
Three or more years of experience as a QRadar Engineer or Architect.
SEM Engineer or Architect experience with QRadar, Splunk, Arcsight or another SEM platform.
Experience creating QRadar use cases, dashboards, and tuning.
Experience configuring QRadar for data collection, data enrichment, querying, and integration as well as managing deployment and operations.
Willingness to travel up to 25% of the time to customer sites or for team events.
Willingness to work on critical issues after business hours or on weekends.
Even better if you have:
SME level expertise with QRadar architecture, implementation, maintenance and tuning.
Experience taking initiative to find and improve QRadar content.
Security analysis experience, including incident classification, investigation, and remediation.
SANS or other security industry certifications such as GIAC, GSEC, GCIA, GCIH, GREM, GPEN or OSCP.
Linux, Perl, Python scripting experience.
Experience with Forensics and Reverse Engineering Malware.
When you join Verizon...
You’ll be doing work that matters alongside other talented people, transforming the way people, businesses and things connect with each other. Beyond powering America’s fastest and most reliable network, we’re leading the way in broadband, cloud and security solutions, Internet of Things and innovating in areas such as, video entertainment. Of course, we will offer you great pay and benefits, but we’re about more than that. Verizon is a place where you can craft your own path to greatness. Whether you think in code, words, pictures or numbers, find your future at Verizon.
Verizon will consider qualified applicants with criminal histories in a manner consistent with the requirements of the San Francisco Fair Chance Ordinance.
Equal Employment Opportunity
We're proud to be an equal opportunity employer- and celebrate our employees' differences,including race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, and Veteran status. Different makes us better.