Siem Consultant (17892)

Měsíčně:130 000 CZK
Místo:Brno, Ostrava
Začátek:12/2019, Délka: 4 měsíců
Home office:neuvedeno
« zpět
Tato pozice není aktálně dostupná

 

We’re offering an attractive opportunity for a SIEM QRadar consultant

 


Parameters: 

Location: Brno / Ostrava

Form of cooperation: Freelance 


About the project: 


Together with a small IT team, you’ll be taking part on the ongoing projects – primarily helping with parsing logs, extension implementation and SIEM QRadar. 



What will you be working on: 


- Analysis of currently unparsed events incoming into SIEM QRadar

- Preparation of custom log source extensions

- Additional Custom event parsing

- Create, tune and manage rules to implement proper alerting based on newly created parsed events

- Document all activities (how, what, where)

- Share knowledge to internal team 


What you need to know:


- Knowledge of common network protocols 

- Knowledge of the basic functions of common network devices

- system OS – Windows, Unix, infrastructure devices 

- Knowledge of regex expressions

- Knowledge of IBM SIEM Qradar 

- Be able to do proper researches, plans, and implementations

- English on an excellent level is a must (Czech not necessary)