"Alerted.org

Introduction

Empowered. Innovative. Inspiring. Creative. Intense. These are all words we use to describe life at IBM.

At IBM, creating innovative IT solutions for global companies is only the beginning. Our clients need to ensure that their world-class systems not only meet business requirements but are secure and reliable. That's where you come in.

Security Analyst - Security Operations Center

This individual is responsible for providing continuous monitoring of the corporate and federal assets ensuring the integrity of the environment. The work of this group includes managing the various scanning tools, assessing and analyzing the data collected from those tools, as well as tracking and reporting on suspicious activity. This position is responsible for detecting intrusions and leading our response to any intrusion.

The Security Operations Center has a global footprint within IBM and is responsible for monitoring 24x7 monitoring and incident response. As a part of this team, you will be working with other like-minded security professionals in order to secure and protect IBM Cloud against emerging cybersecurity threats.

Your role and responsibilities

• Monitor a strategic, comprehensive corporate and federal information security monitoring and operation program to ensure the integrity, confidentiality and availability of information owned, controlled or processed by the organization.

• Perform tuning of SIEM related signals/alerts.

• Create SIEM rules based on new use case requirements.

• Daily security activities related to the protection of corporate and other federal assets.

• Provide information to and monitor/act on information from various sources.

• Ensure that IBM is in compliance with all applicable federal directives and policies regarding securing and monitoring of information.

• Assist in risk assessment duties including reporting and oversight of remediation efforts and change control.

• Detect and assist in security incidents and events to protect corporate and federal assets.

• Design and refine prompts for various AI applications, including text generation, translation, and question answering using Natural Language Processing (NLP)

• Stay up to date with the latest advancements in AI and NLP to improve prompt generation techniques.

• Develop prompts for Security analysts in the SOC while collaborating on detections, alerts, and threat intelligence information to help build an agent approach for alerts

• Analyze AI outputs from multiple security tools to identify patterns and refine prompts based on new and emerging threats

Required technical and professional expertise

Minimum Requirements:

• 4+ years of information security experience

• Extensive knowledge of SIEM tools and log analysis.

• Extensive knowledge of front end SIEM administration and configuration.

• Operational knowledge of building blocks, reference sets, flow data, and network hierarchies as it pertains to SIEM.

• Experience with risk management, vulnerability management, threat analysis, security auditing, security monitoring, incident response and other information security practices preferred

• Knowledge of cloud computing and network protocols

• Knowledge of generic information security standards/programs

• Excellent written and oral communication skills with the ability to effectively communicate with information technology professionals as well as senior management and auditors, assessors, and consultants

• High level of personal integrity, and the ability to professionally handle confidential matters and exude the appropriate level of judgment and maturity

• High degree of initiative, dependability, and ability to work with little supervision

Education:

• High School Diploma or GED required

• Security+ or similar certification

Preferred technical and professional experience

Preferred Requirements: (In addition to the minimum requirements)

• 5+ years of information security experience

• CYSA+, GCIH, GCIA, OSCP, CISSP or similar certification

IBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.