Security Intel & Operations Consultant

IBM

4

(720)

Guadalajara, Mexico (Remote)

Why you should apply for a job to IBM:

  • 4.4/5 in supportive management
  • 83% say women are treated fairly and equally to men
  • 80% would recommend this company to other women
  • 91% say the CEO supports gender diversity
  • Ratings are based on anonymous reviews by Fairygodboss members.

    #707954BR

    Position summary

    y, ticketing systems, log sourcing, contextual data, data source integration techniques, log and test environment management, configuration of production environments, business intelligence and web portals.

    Required Technical and Professional Expertise
    Understanding of network, host, cloud and email based Cybersecurity events
    Ability to work in a team to troubleshoot and solve complex problems
    Tier 1 analyst support, eyes on glass on Splunk which is now their SIEM. Also other tool feeds and alerts. Responding to alerts, initial triage and escalation. Support on shift 2 and 3 evening/night
    Has a SOC with Splunk SIEM, requires second and third shift coverage, triage of alerts. Sources: Endpoints, WAF, phishing e-mails, Palo Alto.
    Initiate triage on notable (network detection / intrusion) events in order to determine if malicious activity is occurring or has occurred within the NextEra enviroment
    Analyze e-mails submitted by users for malicious content
    Escalate potential Cybersecurity issues and participate in investigation triage calls
    Accuratly document findings in the appropriate system an close out investigations
    3rd shift potential

    Preferred Technical and Professional Expertise
    NA

    Why you should apply for a job to IBM:

  • 4.4/5 in supportive management
  • 83% say women are treated fairly and equally to men
  • 80% would recommend this company to other women
  • 91% say the CEO supports gender diversity
  • Ratings are based on anonymous reviews by Fairygodboss members.