8 days old

Threat and Incident Response Architect / Engineer

Budapest, Budapest 1061
  • Job Code
    230614BR
Introduction
At IBM, work is more than a job - it's a calling: To build. To design. To code. To consult. To think along with clients and sell. To make markets. To invent. To collaborate. Not just to do something better, but to attempt things you've never thought possible. To lead in this new era of technology and solve some of the world's most challenging problems.

Your Role and Responsibilities
IBM is seeking an Threat and Incident Response Architect / Engineer to work on the Cyber Security Rapid Response Team - Security Monitoring, Forensic and Threat Intelligence function. This position requires a motivated fast learner, who is able to work within the Rapid Response function to identify, analyze, and remediate potential threats to the environment. The candidate will require security industry knowledge that evolves with current and emerging threats, as well as an ongoing understanding of key business and technological processes. This position will report to the Threat and Response Lead of Information Security.

This role will perform security monitoring, investigations and perform analysis of events in order to thwart internal and external threats to the environment. Additionally, will collaborate on an ongoing basis with the Cyber Security Rapid Response Incident Response Team and Managed Security Service providers to support detection, triage, incident analysis, containment, remediation and reporting of events/incidents while coordinating, balancing business priorities, emerging and actual threats and best practices to ensure the confidentiality, integrity and availability of information assets.

Responsibilities:
Security Monitoring
Assist in establishing Global Security Monitoring discipline to support enterprise.
Conduct Security Monitoring activities to provide Security in Depth visibility into potential known and unknown threats that may pose risk to the IBM environment.
Participate in security incidents and act as technical Subject Matter Expert during significant security incidents.
Review of alerts from Managed Security SOC providers, log correlation, log analysis, determining malicious software behavior, vetting out False Positives, remediating system misconfigurations, tracking system state changes, and other information across multiple systems. Finally, leveraging outputs to support forensic reconstruction as needed.
Utilize analytics to identify potential threats to the environment.
Detect, respond, mitigate, and report on cyber threats/incidents that may impact the environment.
Collaborate with technical leads: Engineering, Operations, Service Desk, Applications and BISOs on matters related to security monitoring across global footprint.
Collaborate and serve as liaison to Managed and/or Unmanaged Security Service providers.
Conduct Operations surrounding cyber security incident response technologies including network logging and forensics, security information and event management tools, security analytics platforms, log search technologies, and host based forensics as applicable.
Act as an internal information security consultant to the business and technology units, advising on risks, threats and control practices related to Rapid Response.
Develop and manage ongoing Cyber Security Training and Awareness to stakeholders.

Required Professional and Technical Expertise
At least 2 years of Networking experience
At least 2 years of Malware Re-Engineering
At least 5 years of experience in Cyber Security discipline and experience managing Technical Teams in a large scale environment.
At least 5 years Information System Security background
At least one Professional Certification; CISSP, CRISC, GISP, GIAC, or equivalent

Preferred Professional and Technical Expertise
Practical experience with TCP/IP networking
Experience with Linux, Windows and Network Operating Systems
Working knowledge of Routing and Access Control Devices

About Business Unit


Your Life @ IBM


About IBM


Location Statement


Being You @ IBM
IBM is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.

Categories

Industry

  • Computers Software and Hardware
Posted: 2019-08-10 Expires: 2019-09-09

Before you go...

Our free job seeker tools include alerts for new jobs, saving your favorites, optimized job matching, and more! Just enter your email below.

Share this job:

Threat and Incident Response Architect / Engineer

IBM
Budapest, Budapest 1061

Join us to start saving your Favorite Jobs!

Sign In Create Account
Powered ByCareerCast