Senior SIEM Engineer

Job Description

IBM Security is growing and looking for a Senior Security Information and Event Management (SIEM) Engineer to support a variety of exiting projects across all industry sectors. You will act as a subject matter expert in the area of SIEM and is responsible for hands on implementation of the QRadar SIEM solution.

The Senior SIEM Engineer has the following responsibilities:

  • Create, modify and tune the system rules to adjust the specifications of alerts and incidents.

  • Create scheduled reports, integration of the SIEM with multiple systems and on-boarding of the log sources.

  • Ensure conversion and configuration of the use cases to SIEM rules.

  • Perform maintenance and administration (software updates, troubleshoot issues etc.) of the SIEM components.

  • Contribute in requirement gathering, PoCs during sales process.

What makes security so exciting is that it's always evolving. Techniques that worked last year no longer work, which makes a position with IBM Security essential and fast paced. In IBM, you can engage with the biggest companies, go up against the most sophisticated security challenges and connect with creative minds.
From consultancy and client selling to architecting and implementing a solution, a role within IBM Security has a diverse remit. Learn more about IBM Security and what we do here:

If your desire is to help empower people with unmatched security while working in a supportive and engaging environment, your career and future will be made with IBM. IBM Security is focused on developing top talent and industry leading skills, and believes in career growth and flexibility.

We offer:

  • Brand new office in Kista, Stockholm

  • Career opportunities

  • Flexible work environment

  • World-class learning opportunities

Check out IBM Security on YouTube to be inspired:

Depending on project requirements, some travel might be necessary.

We look forward to hearing from you! If you have any questions, please send them to

Required Technical and Professional Expertise

  • Has experience in supporting security technologies and SIEM related tasks.

  • Has knowledge of SIEM and its ability to integrate and absorb data form associated security technologies and it's role in a Security Operations Center.

  • Knowledge of TCP/IP communication and flow (netflow) technologies.

  • Hands on experience on QRadar SIEM deployment, configuration and maintenance is highly desired.

  • Experience of integrating the SIEM with other systems (Vulnerability scanner, AD, etc.)

  • Experience and capability of translating business driven Use case to SIEM rules on the QRadar.

  • Has working knowledge of the Unix and Windows platforms.

  • Has understanding of information security across multiple security domains such as Identify and Access Management; Application and Data security; Infrastructure and Endpoint; as well as the inter-relationships between major components.

  • The candidate shall preferably be Swedish citizen/national.

Preferred Tech and Prof Experience


EO Statement
IBM is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.

Back to top