Introduction

At IBM, work is more than a job - it's a calling: To build. To design. To code. To consult. To think along with clients and sell. To make markets. To invent. To collaborate. Not just to do something better, but to attempt things you've never thought possible. Are you ready to lead in this new era of technology and solve some of the world's most challenging problems? If so, let’s talk.

Your role and responsibilities

• Analyze events, flows, alerts and advanced analysis of potential security incidents.

• Correlate events and find tuning opportunities to have a healthy environment on customer’s console.

• Make recommendations to clients about increasing security.

• Analyze trends across customer environment for large trends.

• Report security events and make customer escalations based on threat analysis.

• Work with client to help remediate and answer questions regarding security events.

• Make recommendation to clients to improve security posture.

• Stay abreast of current and upcoming threats.

• Identify trends in traffic and provide recommendations.

• Mentor other analysts.

Required technical and professional expertise

• 1 year of experience in cyber security.

• Understanding of TTP's, MITRE ATT&CK, cyber threats and threat mitigation recommendations.

• Ability to analyze a payload and produce a technical analysis.

• Understanding of incident handling.

• Understanding of Cloud technologies and environment.

• Experience working with XDR, SIEM, SOAR and EDR tools.

• Rotative working shift.

• English level intermediate.

Preferred technical and professional experience

• 2+ years of experience with SOC services.

• CompTIA CySA+, Pentest+ or Security+.