CONSULTANT THREAT MANAGEMENT

Introduction Information and Data are some of the most important organizational assets in today’s businesses.
As a Security Consultant, you will be a key advisor for IBM’s clients, analyzing business requirements to design and implement the best security solutions for their needs.
You will apply your technical skills to find the balance between enabling and securing the client's organization with the cognitive solutions that are making IBM the fastest growing enterprise security business in the world.
Your Role and Responsibilities The IBM Security Consultant will provide delivery leadership and client satisfaction in Security Intelligence and Operations (SIOC).
They will serve as a Trusted Advisor to IBM Clients for their core security domain.
They will strive to deliver services IBM clients with the highest quality and customer satisfaction possible.
Responsibilities.
- Design, implement and transform the clients SOC in line with a developed maturity roadmap focused on reducing enterprise risk through improved detection and response and use of AI components; - Educate the client team on Threat Use Case methodology and conduct comparative analysis of current Security Use Cases aligned to industry frameworks; - Assist a client in procuring, deployment, assessments, migrations and/or upgrading its SIEM technology, with a base set of.
use cases, correlation rules, data source integrations and dashboard/reports; - Support client's in custom developments around SIEM solutions (like.
Data Source customizations, Complex rules development, among others); - Improve client's detection capabilities through MITRE ATT&CK framework, assessing data sources/controls (e.
.
SIEM/EDR/SOAR) and provide recommendations to remediate gaps in coverage; - Assess the client's SOAR platform architecture, transformation requirements, security tool suite, processes, playbooks, and case management; - Create and configure playbooks and integrations that align with the client's runbooks, orchestration and automation use cases; - Lead and develop an end-point detection and response (EDR) strategy and roadmap to threat detection and response that provides holistic protection against cyberattacks.
- Be a trusted advisor to IBM Clients for their core security domain and participate in client governance program where appropriate.
- Help organize project approaches and teams for client delivery and lead project delivery; - Work closely with the solution design teams in developing client presentations and Statement of Works (SOWs); - Use your expertise in the security industry to contribute content and advice to the offering development process.
Todas as vagas são elegíveis para pessoas com deficiência e reabilitados.
Required Technical and Professional Expertise - IBM QRadar - SIEM administration and configuration - Client facing consultant with 5+ years - Previous SOC experience on any position, preferably SIEM and SOAR administration - Portuguese and English language.
Preferred Technical and Professional Expertise - IBM QRadar - Microsoft Sentinel - AWS Cloud, Azure Cloud and/or Google Cloud services.
- CompTia.
Security+, CySA+, CASP+ - IBM.
Certified Associate - Security QRadar SIEM V7.
, Certified Deployment Professional - Security QRadar SIEM V7.
, Certified Administrator - Security QRadar SIEM V7.
, Certified Analyst - Security QRadar SIEM V7.
- Microsoft Azure.
AZ-500 Azure Security Engineer Associate