- Design, implement and transform the clients SOC in line with a developed maturity roadmap focused on reducing enterprise risk through improved detection and response and use of AI components;
- Educate the client team on Threat Use Case methodology and conduct comparative analysis of current Security Use Cases aligned to industry frameworks;
- Assist a client in procuring, deployment, assessments, migrations and/or upgrading its SIEM technology, with a base set of: use cases,
- Support client's in custom developments around SIEM solutions (like: Data Source customizations, Complex rules development, among others);
- Improve client's detection capabilities through MITRE ATT&CK framework, assessing data sources/controls (e.g. SIEM/EDR/SOAR) and provide recommendations to remediate gaps in coverage;
- Assess the client's SOAR platform architecture, transformation requirements, security tool suite, processes, playbooks, and case management;
- Create and configure playbooks and integrations that align with the client's runbooks, orchestration and automation use cases;
- Lead and develop an endpoint detection and response (EDR) strategy and roadmap to threat detection and response that provides holistic protection against cyberattacks.
- Be a trusted advisor to IBM Clients for their core security domain and participate in client governance program where appropriate.
- Help organize project approaches and teams for client delivery and lead project delivery;
- Work closely with the solution design teams in developing client presentations and Statement of Works (SOWs);
- Use your expertise in the security industry to contribute content and advice to the offering development process.
- IBM QRadar
- SIEM administration and configuration
- Client facing consultant with 5+ years
- Previous SOC experience on any position, preferably SIEM and SOAR administration
- Portuguese and English language.
- IBM QRadar
- Microsoft Sentinel
- AWS Cloud, Azure Cloud and/or Google Cloud services.
- CompTia: Security+, CySA+, CASP+
- IBM: Certified Associate
- Security QRadar SIEM V7. 5, Certified Deployment Professional
- Security QRadar SIEM V7.5, Certified Administrator
- Security QRadar SIEM V7.5, Certified Analyst
- Security QRadar SIEM V
- Microsoft Azure: AZ500 Azure Security Engineer Associate #J-18808-Ljbffr
-
VP Global Sales Ops
3 weeks ago
Emplifi Phoenix, AZ, United StatesEmplifi is a leading unified customer engagement platform that empowers businesses to reach and grow communities through digital- and social-first strategies. More than 20,000 brands like McDonald's, Ford Motor Company, and Delta Air Lines rely on Emplifi to enable connected, emp ...
-
VP Global Sales Ops
3 weeks ago
Emplifi Phoenix, AZ, United StatesEmplifi is a leading unified customer engagement platform that empowers businesses to reach and grow communities through digital- and social-first strategies. More than 20,000 brands like McDonald's, Ford Motor Company, and Delta Air Lines rely on Emplifi to enable connected, emp ...
Consulting Consultant Threat Management Professional Sao Paulo, BR - Phoenix, United States - IBM
Description
IntroductionInformation and Data are some of the most important organizational assets in today's businesses.
As a Security Consultant, you will be a key advisor for IBM's clients, analyzing business requirements to design and implement the best security solutions for their needs.
You will apply your technical skills to find the balance between enabling and securing the client's organization with the cognitive solutions that are making IBM the fastest growing enterprise security business in the world.
Your Role and ResponsibilitiesThe IBM Security Consultant will provide delivery leadership and client satisfaction in Security Intelligence and Operations (SIOC). They will serve as a Trusted Advisor to IBM Clients for their core security domain. They will strive to deliver services IBM clients with the highest quality and customer satisfaction possible.
Responsibilities:
Required Technical and Professional Expertise