Independent Contractor QRadar QROC Specialist
Scottsdale, AZ
Contracted
Experienced
Independent Contractor – QRadar/QROC Specialist
Company: Lumifi Cyber Inc.
Location: Scottsdale AZ strongly preferred, remote accepted
About the Project, Summary:
We are seeking an experienced independent contractor to with deep knowledge around in threat detection and automation in QRadar/QROC. Having additional knowledge and experience in other Palo Alto is highly recommended. The Independent Contractors goal is to translate a threat detection library utilized in QRadar, verify the concept is covered in a default rule in Palo SIEM or covered by Lumifi threat detection, and if it is not then to build the new rule in Palo Alto Cortex XQL.
Secondary there will be a focus on playbooks, to convert xSOAR to Palo Alto xSIAM. These playbooks will contain enrichment from various log sources (Azure Entra ID, O365, Firewall etc.)
Length of Project: 3 to 6 months with possible extension
Responsibilities:
Stage 1: 8 weeks
Required Skills and Qualifications:
To become an Independent Contractor the following are required:
Company: Lumifi Cyber Inc.
Location: Scottsdale AZ strongly preferred, remote accepted
About the Project, Summary:
We are seeking an experienced independent contractor to with deep knowledge around in threat detection and automation in QRadar/QROC. Having additional knowledge and experience in other Palo Alto is highly recommended. The Independent Contractors goal is to translate a threat detection library utilized in QRadar, verify the concept is covered in a default rule in Palo SIEM or covered by Lumifi threat detection, and if it is not then to build the new rule in Palo Alto Cortex XQL.
Secondary there will be a focus on playbooks, to convert xSOAR to Palo Alto xSIAM. These playbooks will contain enrichment from various log sources (Azure Entra ID, O365, Firewall etc.)
Length of Project: 3 to 6 months with possible extension
Responsibilities:
Stage 1: 8 weeks
- Review of current QRadar threat detection library to verify the concept is covered in default Palo Alto SIEM or verify it is covered in Lumifi Threat Detection Library.
- Partner with Lumifi Threat Detection team to ensure you have all the right information to verify
- Translate Threat Detection Library in QRadar to Palo Alto xSIAM utilizing XQL.
- Migrate and translate automation playbooks from xSOAR to xSIAM
Required Skills and Qualifications:
- Proficient in QRadar SIEM/QROC
- 3+ years’ experience in designing, building, and testing playbooks
- 3+ years' experience in threat detections and tuning
- Ability to work independently
- Self-motivated and results-oriented
- US Based
- English proficient
To become an Independent Contractor the following are required:
- Submit a resume with your background and qualifications for the role and have a call with the manager of Product Development regarding the role.
- Complete and pass a background check via Chekr
- Sign an Independent Contractor Agreement
- Complete a W9 form
Apply for this position
Required*