Incident Response Lead
Multiple Cities
IBM
For more than a century, IBM has been a global technology innovator, leading advances in AI, automation and hybrid cloud solutions that help businesses grow.
Introduction
A career in IBM Consulting is rooted by long-term relationships and close collaboration with clients across the globe. You’ll work with visionaries across multiple industries to improve the hybrid cloud and AI journey for the most innovative and valuable companies in the world. Your ability to accelerate impact and make meaningful change for your clients is enabled by our strategic partner ecosystem and our robust technology platforms across the IBM portfolio; including Software and Red Hat.
Curiosity and a constant quest for knowledge serve as the foundation to success in IBM Consulting. In your role, you’ll be encouraged to challenge the norm, investigate ideas outside of your role, and come up with creative solutions resulting in ground breaking impact for a wide network of clients. Our culture of evolution and empathy centers on long-term career growth and development opportunities in an environment that embraces your unique skills and experience.
Your Role and Responsibilities
Monitor security alerts using SIEM and EDR tools to identify suspicious activity. Perform initial analysis and triage of security incidents. Escalate complex issues to Tier 2 and Tier 3 SOC Analysts. Maintain detailed incident logs and reports. Ensure compliance with Standard Operating Procedures (SOPs) for incident response. Provide real-time monitoring and initial incident response for security events.
Required Technical and Professional Expertise
Key Job Details
Role:Incident Response Lead Location: Multiple Locations See All Bethesda Washington Alexandria Category:Consulting Employment Type:Full-Time Travel Required:No Travel Contract Type:Regular Company:(0147) International Business Machines Corporation Req ID:730764BR
A career in IBM Consulting is rooted by long-term relationships and close collaboration with clients across the globe. You’ll work with visionaries across multiple industries to improve the hybrid cloud and AI journey for the most innovative and valuable companies in the world. Your ability to accelerate impact and make meaningful change for your clients is enabled by our strategic partner ecosystem and our robust technology platforms across the IBM portfolio; including Software and Red Hat.
Curiosity and a constant quest for knowledge serve as the foundation to success in IBM Consulting. In your role, you’ll be encouraged to challenge the norm, investigate ideas outside of your role, and come up with creative solutions resulting in ground breaking impact for a wide network of clients. Our culture of evolution and empathy centers on long-term career growth and development opportunities in an environment that embraces your unique skills and experience.
Your Role and Responsibilities
Monitor security alerts using SIEM and EDR tools to identify suspicious activity. Perform initial analysis and triage of security incidents. Escalate complex issues to Tier 2 and Tier 3 SOC Analysts. Maintain detailed incident logs and reports. Ensure compliance with Standard Operating Procedures (SOPs) for incident response. Provide real-time monitoring and initial incident response for security events.
Required Technical and Professional Expertise
- CompTIA Security+ certification.
- 1-2 years of experience in IT security or network operations.
- Familiarity with SIEM and EDR tools, with a particular focus on Splunk
- Basic understanding of security concepts such as firewalls, IDS/IPS, malware analysis, and incident response.
Preferred Technical and Professional Expertise
- Experience working in a 24×7 SOC environment.
- Familiarity with SOAR tools and automation.
- Exposure to FedRAMP compliance and NIST guidelines.
- Network+ or other relevant security certifications.
- Experience leveraging Splunk as a SIEM for a cloud-hosted environment.
Key Job Details
Role:Incident Response Lead Location: Multiple Locations See All Bethesda Washington Alexandria Category:Consulting Employment Type:Full-Time Travel Required:No Travel Contract Type:Regular Company:(0147) International Business Machines Corporation Req ID:730764BR
Projected Minimum Salary:$131,750 per year Projected Maximum Salary:$131,750-$155,000/year per year Date Posted:October 6, 2024
Job stats:
11
1
0
Categories:
Incident Response Jobs
Leadership Jobs
Tags: Automation Cloud Compliance CompTIA EDR FedRAMP Firewalls IDS Incident response IPS Malware Monitoring NetOps NIST Red Hat SIEM SOAR SOC Splunk
Perks/benefits: Career development Team events
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Senior Security Analyst jobsInformation System Security Officer jobsSenior Cloud Security Engineer jobsInformation Security Manager jobsInformation Security Specialist jobsSenior Cybersecurity Engineer jobsSenior Network Security Engineer jobsSecurity Consultant jobsIT Security Engineer jobsCyber Security Specialist jobsSenior Penetration Tester jobsSecurity Specialist jobsSenior Information Security Analyst jobsSenior Cyber Security Engineer jobsChief Information Security Officer jobsSystems Engineer jobsSystems Administrator jobsInformation System Security Officer (ISSO) jobsSenior Product Security Engineer jobsCloud Security Architect jobsIT Security Analyst jobsPrincipal Security Engineer jobsStaff Security Engineer jobsSecurity Operations Analyst jobsCybersecurity Specialist jobs
DevSecOps jobsKubernetes jobsEncryption jobsPowerShell jobsIDS jobsSplunk jobsSaaS jobsEDR jobsSDLC jobsIPS jobsRMF jobsSQL jobsTop Secret jobsIntrusion detection jobsBash jobsCompTIA jobsThreat detection jobsITIL jobsFinance jobsOWASP jobsDoDD 8570 jobsCRISC jobsDocker jobsActive Directory jobsBanking jobs
UNIX jobsTCP/IP jobsVPN jobsGIAC jobsTerraform jobsSANS jobsClearance Required jobsIT infrastructure jobsHIPAA jobsSOX jobsSOC 2 jobsOSCP jobsCISO jobsIndustrial jobsJavaScript jobsCCSP jobsData Analytics jobsDNS jobsSOAR jobsPolygraph jobsJira jobsAnsible jobsMITRE ATT&CK jobsCyber defense jobsGCIH jobs