Cybersecurity Threat Detection Engineer

Multiple Cities

IBM

For more than a century, IBM has been a global technology innovator, leading advances in AI, automation and hybrid cloud solutions that help businesses grow.

View all jobs at IBM

Apply now Apply later

Introduction
Information and Data are some of the most important organizational assets in today’s businesses. As a Security Consultant, you will be a key advisor for IBM’s clients, analyzing business requirements to design and implement the best security solutions for their needs. You will apply your technical skills to find the balance between enabling and securing the client’s organization with the cognitive solutions that are making IBM the fastest growing enterprise security business in the world.

Your Role and Responsibilities IBM CISO office is seeking an experienced Cybersecurity Threat Detection Engineer. This position requires excellent leadership, Detection Engineering, cyber security threat intelligence experience and program management skills. This role will serve as a technical leader for the use case development and standardization effort which will drive use case prioritization and road map development across multiple platforms. The selected candidate will work with various technical teams to develop and enhance use cases and rules across multiple teams and will adapt the road map as needed to meet the vision of the IBM CISO office and the changing threats to the environment. Job Duties: • The Cybersecurity Threat Detection Engineer will be responsible for working with all levels of the security program from senior level management to technical rule development engineers and must be able to communicate and present ideas, solutions and evidence using charts and visual workflows • They will perform business use requirement reviews and development with senior level business and application owners. • They will work with threat intelligence analysts and threat hunters to understand the threats environment and assist in the development of use cases. • They will work with monitoring, triage, and response analysts to understand their visibility requirements. • They will prioritize the use case road map and lead the use case development work, along with several members of the use case development team. They will track the use case development work to ensure it is performed in the agreed upon development time frames. • They will be highly organized and able to manage and work on multiple workstreams at the same time


Required Technical and Professional Expertise

• Critical thinking and problem-solving skills. • Use Case development and implementation. • Experienced developing Use Cases in multiple query languages. • Expert in Regular expression. • Experience with EDR platforms, such as Cortex XSIAM, Microsoft Defender ATP, Uptycs, and Crowdstrike Falcon.


Preferred Technical and Professional Expertise

• Proficient in Cortex XSIAM rule creation and modification. • Relevant industry recognized certifications (Sec+, Network+, CySA+, CCNA, Linux+, etc.). • Experience with SIEM tools is a plus. • Experience with cloud computing platforms, e.g. IBM Cloud, AWS, Azure. • System administration skills for Windows and Linux.
Key Job Details
Role:Cybersecurity Threat Detection Engineer Location: Multiple Locations See All Armonk Austin Herndon Category:Consulting Employment Type:Full-Time Travel Required:No Travel Contract Type:Regular Company:(0147) International Business Machines Corporation Req ID:722754BR

Projected Minimum Salary:$136,000 per year Projected Maximum Salary:$136,000-$205,000/year per year Date Posted:October 29, 2024
Apply now Apply later
Job stats:  0  0  0

Tags: AWS Azure CISO Cloud CrowdStrike EDR Linux Monitoring SIEM Threat detection Threat intelligence Windows

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.