Security Specialist-Incidence Response

IBM

4

(720)

Mumbai, India (Remote)

Why you should apply for a job to IBM:

  • 4.4/5 in supportive management
  • 83% say women are treated fairly and equally to men
  • 80% would recommend this company to other women
  • 91% say the CEO supports gender diversity
  • Ratings are based on anonymous reviews by Fairygodboss members.

    #726264BR

    Position summary

    iver unmatched performance with the power automation.
    If you thrive in a dynamic, reciprocal workplace, IBM provides an environment to explore new opportunities every single day. And if you relish the freedom to bring creative, thoughtful solutions to the table, there's no limit to what you can accomplish here.
    Responsibilities

    • Provide security monitoring and incident response services supporting the mission to protect data, products and infrastructure
    • Operate security monitoring and incident response tools with a focus on continuous improvement
    • Research and recommend solutions for incident response and digital forensics.
    • Experience with log analysis, event correlation, incident management procedures and systems
    • Proactive detection and remediation of new exploits
    • Experience with threat Hunting
    • Experience with IOC Enrichment and Analysis

    Security process improvement
    Who you are:

    What you'll do:

    How we'll help you grow:

    • You'll have access to all the technical and management training courses you need to become the expert you want to be

    • You'll learn directly from expert developers in the field; our team leads love to mentor

    • You have the opportunity to work in many different areas to figure out what really excites you

    Required Technical and Professional Expertise
    Incident Response:

    • Investigate security incidents, including malware infections, phishing attacks, and unauthorized access attempts.
    • Conduct root cause analysis and provide recommendations to mitigate future incidents.
    • Coordinate with other security and IT teams to contain and remediate security incidents.
    • Assist in post-incident reporting and documentation to provide insights for future threat mitigation strategies.

    Threat Hunting:

    • Perform proactive threat hunting activities using various security tools and data sources (e.g., SIEM, EDR, IDS/IPS).
    • Analyze security alerts, logs, and network traffic to identify potential threats and vulnerabilities.
    • Research and implement new threat hunting techniques and methodologies.
    • Develop and execute hypotheses to detect advanced persistent threats (APT), insider threats, and anomalous behavior.

    Python Development and Automation:

    • Develop and maintain scripts using Python to automate routine security tasks, such as log analysis, alert enrichment, and threat intelligence integration.

    • Create custom security tools and utilities to assist in threat detection and incident response efforts.

    • Optimize existing Python scripts for better performance and efficiency in security operations.

    Preferred Technical and Professional Expertise

    • Certification: CEH, IBM Qradar, ArcSight etc.

    Why you should apply for a job to IBM:

  • 4.4/5 in supportive management
  • 83% say women are treated fairly and equally to men
  • 80% would recommend this company to other women
  • 91% say the CEO supports gender diversity
  • Ratings are based on anonymous reviews by Fairygodboss members.