Job Description
Today's rapidly evolving threat landscape demands smarter and more responsive managed security services. IBM Security Services offer the industry-leading tools, technology and expertise to help secure information assets of thousands of the world's leading businesses and governments.
Join our team of highly skilled security professionals who are working on a comprehensive end-to-end coverage for our clients' IT security services needs.
We are looking for a SOC Tier 3 Analyst to support our Security Services team.
Tasks & accountabilities
Your main tasks and responsibilities will include:
- Manage the scoping, containment, remediation, reporting, and root cause analysis for Security Incidents within the customer infrastructure
- Provide guidance on control implementation for post-incident risk reduction
- Support the ongoing development of the SIEM environment and Use Case development
- Support the customer Security Incident Response Team
- Work closely with our customer dedicated Security Account Manager (SAM) to address security expectations.
- SOC level 3 Investigation and Follow-up of threats / events / incidents escalated from the Security Operations Center: Tier 1 & 2
- Contribute to the process managed by security including security incidents management, vulnerability management, threat management, Firewall rules revalidation, etc
- Analysis of the security incidents: advise on corrective measures to implement in order to resolve IT incidents compromising the security. Follow-up on those advices.
- Contribute to audit and compliance activities (constraints of country specific regulations, contractual constraints and respect of security guidelines)
- The role may require off hours support, occasionally
- Be part of on technical security duty on call
Required Technical and Professional Expertise
- Experience with SOC Processes
- Experience with SIEM tools (such as RSA, Arcsight, Splunk and QRadar), anti-Virus/Malware, anti-DDOS, WAF, FW Rules Management, forensic tools.
- Excellent Knowledge and experience in IT Security Technologies
- Background in Vulnerability Management, Security Incident Management, Forensic Analysis
- Ability to translate security impacts to the wider business
- Willingness to work outside office hours as part of the CSIRT Team
- You are a team player and appreciate teamwork. You have good relational skills.
- University degree in Information Technology or Information Security GCIH, GCIA, or equivalent certifications
- Ability to work in an international context and excellent communication skills
- Interpersonal skills with the ability to establish and working relationships in a project-based / client-serving model, and to work closely with people at different levels of an organization
- English is a mandatory language requirement
Preferred Professional and Technical Expertise
- 3 years of experience in security analysis (SOC)
- 3 to 5 years of experience in Managed Security Services
- Security certifications would be an advantage
Additional benefits:
- Work for the best Security Company in Europe (SC winner 2016) and The Best Mobile Security Solution with IBM MaaS360 2016 SC Magazine Europe Awards
- Training and certifications
- Private medical package and insurance package
- Multisport Card
- Working on international projects in multicultural teams
- Good to be an IBMer discounts
- Cinema & trips for IBMers
- Language classes
- Summer camps for children