Security Specialist-Network Security L3

IBM

4

(720)

Mumbai, India

Why you should apply for a job to IBM:

  • 4.4/5 in supportive management
  • 83% say women are treated fairly and equally to men
  • 80% would recommend this company to other women
  • 91% say the CEO supports gender diversity
  • Ratings are based on anonymous reviews by Fairygodboss members.

    #717988BR

    Position summary

    xcites you

    Required Technical and Professional Expertise

    • Proficient with Azure Sentinel focusing primarily on SIEM (security information and event manager) for monitoring, XDR (Extended Detection and Response) for incident response actions

    • Possess knowledge of a Security Operations Center (SOC) operations

    • Must have technology experiences: Azure Sentinel, Azure Sentinel SOAR, Azure Playbooks, KQL Queries

    • Sound Knowledge on JavaScript, C#, KQL or SQL development background

    • Possess knowledge on log management, logs generated by various applications or appliances of IT infrastructure for SIEM event correlation

    • Ability to define various SIEM use cases based on IT environment for better detection of anomalies

    • Tools : Azure Sentinel, Log Analysis, KQL, Automation, SOAR

    • Strong understanding of the SOC KPIs, establish SOC performance goals and priorities

    • Manages security teams, monitors threat, implements security policies, and collaborates with other departments to ensure a comprehensive security posture.

    • Understanding of the cybersecurity framework such as NIST, MITRE ATT&CK(attack lifecycle management)

    • Manage communications, escalations, including taking corrective action for remediation.

    • Excellent written and Verbal communication skill

    • Knowledge on SOC automation related skills

    • Knowledge of handling and using threat intelligence feeds for threat detection purposes. • Critical Incident lifecycle Management and Reporting Operations Management, Stakeholder Management and Vendor Management

    • IT Security Certifications like CISSP, CISM, etc.

    Preferred Technical and Professional Expertise

    • Design, build, test, deploy Sentinel SIEM and Security Architectures
    • Experience with Security Information and Event Management (SIEM) tools - mainly Sentinel and QRadar
    • Preferred Certifications like Certification : AZ-900 ,SC-200 / AZ-500 and any other relevant SIEM certifications(OEM specific) etc.
    • At least 3 years of professional experience with IT Security products and services, ideally related to Sentinel SIEM
    • Understanding the technical aspects of the Information Security.
    • Participate on interconnecting the Sentinel SIEM tool with sources of security incidents - e.g. logs from servers, network and security devices, Vulnerability Management system, Antivirus system, etc.
    • Serve as deeply skilled and knowledgeable resource within the SIEM and SOAR technology area
    • Participate on automation of the incidents prioritization and false positives identification
    • Perform security incident analysis and recommend remediation steps

    Why you should apply for a job to IBM:

  • 4.4/5 in supportive management
  • 83% say women are treated fairly and equally to men
  • 80% would recommend this company to other women
  • 91% say the CEO supports gender diversity
  • Ratings are based on anonymous reviews by Fairygodboss members.