Solutions Architect
[Hartford, CT] | 2023-06-07 11:27:41
Share Job
Job Code : MY3TECH0385
Job : Solutions Architect (QRadar and IBM Resilient (SOAR) )
Location : 55 Farmington Av Hartford, Connecticut 06103
Duration : 6+ Months
The initial period of work is anticipated to be from July 2023 through September 2023 with possible 3 month extension.
2. PROJECT/SYSTEM OVERVIEW
Provide technical expertise configuring QRadar and IBM Resilient (SOAR)
3. SCOPE OF WORK
High-level description of the need.
Short term project for deployment and customization of SOAR environment and QRadar expansion.
Requires specific experience: Python scripting, configure IBM SOAR, QRadar configuration and tunning.
4. SPECIFIC DELIVERABLES TO BE PROVIDED
Minimally, the following should be included:
1. Deliverables and Services to be provided by each Consultant – Be specific and concrete.
a. Provide the following services as directed:
i. Develop and Deploy custom API integrations for IBM SOAR
ii. Create Playbooks and workflows for monitoring, containment, response and recovery to include but not limited to:
1. Phishing Response
2. Firewall ruleset integration (Checkpoint)
3. Vulnerability management
iii. QRadar deployment and expansion
iv. QRadar custom rule tuning
2. Department’s requirements for status reporting.
a. The resource will work directly with senior members of the IT Security Staff taking direction from the IT Security Manager. If circumstances dictate, written reports may be required.
3. Documentation required from the Contractor (e.g. reports, manuals, analysis, or other documentation as required by the Department).
a. Environmental Diagrams, Standard Operating Procedures (SOP), document queries etc.
4. Applicable technical standards required by the Department, along with Department policies and procedures.
a. NA
5. Implementation schedule for the Deliverables and Services.
List of required skills and experience - Be specific and concrete.
The desired consultant should have:
• Expert-level knowledge of IBM Security products; QRadar SIEM and Resilient SOAR
• Not less than 5 years of IT experience
• Python Scripting
• Advanced Query Language (AQL)
• Working knowledge of TCP/IP
• Linux experience
• Working knowledge of CheckPoint Firewall and IPS
• Experience working in complex network environment
• Experience working in a team environmen
Any Graduate