Role: QRadar Subject-Matter-Expert / QRadar Consultant
Specialism(s) : IBM QRadar, SIEM, Log Source Analysis, Detection / Security Engineering, Upgrading & Patching, Tuning, Security Frameworks
Type: Contract, Daily Rate
Pay Rate: DoE
Start: Mid-End May 2026
Location: Remote / Midlands
Duration: 3 Months

QRadar SME / Consultant

Overview

CPS Group UK are delighted to be seeking an experienced IBM QRadar SME / Consultant to support, optimize, and enhance our clients SIEM environment. This role will focus on reviewing the current QRadar deployment, improving log source coverage, strengthening detection capabilities, and ensuring the platform is maintained and upgraded in line with best practices.

You’ll act as a subject matter expert, working closely with security operations and engineering teams to ensure the solution is effective, resilient, and aligned with evolving threat landscapes. You will also actively participate in knowledge transfer/training sessions.

The role is primarily remote (UK applicants only), though will require infrequent on-site attendance for strategic meetings in the Midlands.

Key Responsibilities

Conduct a comprehensive review of the IBM QRadar SIEM solution, including architecture, configuration, and performance
Assess and optimize log sources, ensuring correct onboarding, parsing, normalization, and coverage
Design, develop, and tune detection use cases and correlation rules to improve threat visibility
Perform detection engineering, including use case lifecycle management and continuous improvement
Provide ongoing maintenance and administration of the QRadar platform
Lead or support upgrades, patching, and system enhancements, ensuring minimal disruption
Identify gaps, inefficiencies, and opportunities for improvement across the SIEM environment
Collaborate with SOC analysts to improve alert fidelity and reduce false positives
Produce clear documentation, including architecture reviews, recommendations, and runbooks
Provide advisory support and best practice guidance to internal stakeholder

Required Skills & Experience

Strong hands-on experience with IBM QRadar SIEM
Proven experience conducting QRadar health checks / solution reviews
Deep understanding of log source integration, parsing (DSM), and normalization
Experience in detection engineering, including rule creation, tuning, and threat use case development
Solid knowledge of SIEM operations, including maintenance and troubleshooting
Experience performing QRadar upgrades and patching
Familiarity with security frameworks (e.g., MITRE ATT&CK) and threat detection methodologies
Strong analytical and problem-solving skills

For more information or immediate consideration for this opportunity, please contact Charlie Grant at CPS Group UK on (phone number removed) or email (url removed)

By applying to this advert you are giving CPS Group (UK) Ltd authority to hold and process your data for this specific role and any other roles we may deem suitable to you over time. We will not pass your data to any third party without your verbal or written permission to do so. All incoming and outgoing calls are recorded for training and compliance purposes. CPS Group (UK) Ltd is acting as an Employment Agency in relation to this vacancy. Our new privacy policy can be found here (url removed)