It4us Cyber SecurityRemote
Blue Team Analyst – SOC, Rules and Correlation
Brazil
Full Time
2 hours ago
No Sponsorship
About this role
Role Overview
- Create, develop and optimize correlation rules in IBM QRadar.
- Build and refine use cases based on real threat scenarios.
- Tune detection parameters to reduce false positives.
- Develop queries (AQL) for investigation and SOC support.
- Create dashboards, reports and monitoring panels.
- Map rules and detections to frameworks such as MITRE ATT&CK.
- Support the evolution of detection maturity for monitored environments.
- Collaborate with the monitoring team (SOC N1/N2) to continuously improve generated offenses.
- Perform continuous rule tuning and performance analysis.
Requirements
- Hands-on experience with IBM QRadar.
- Experience creating and maintaining correlation rules.
- Knowledge of building security use cases.
- Experience working in SOC environments.
- Knowledge of log and security event analysis.
- Experience with AQL queries.
- Understanding of networks, protocols and security fundamentals.
- Analytical ability to translate threat scenarios into detection logic.
Benefits
- Structured career plan (semi-annual and/or annual reviews)
- Support for technical courses and certifications
- 100% online healthcare (telemedicine, specialists, nutrition and psychology)
- Life insurance
- Accounting support for MEI (individual micro-entrepreneur)
- Day off during the month of your birthday