SOC Technical implementation Advisor - SIEM / SOAR

Who We Are

At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward – always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities.

The Role

Your Role
At Kyndryl, our Security Consultants are pioneers in transforming how organizations protect their digital worlds. As a SOC Tech implementation Advisor - SIEM / SOAR, you will be at the forefront of cybersecurity, defending against evolving threats by implementing state-of-the-art solutions that ensure the confidentiality, integrity, and availability of client data. You will provide expert security assessments, collaborate with clients, and design and implement effective security strategies to safeguard sensitive information.

In your role, you will lead the deployment and optimization of Security Information and Event Management (SIEM) and Security Orchestration, Automation, and Response (SOAR) solutions. This includes integrating these systems into clients' existing security frameworks, developing custom workflows and rules, and providing training and support to security teams. You will be responsible for identifying vulnerabilities, conducting risk assessments, and recommending improvements to enhance security measures.

Collaboration is key working closely with cross-functional teams, customers, and vendors, sharing your expertise to build secure infrastructures and drive long-term security solutions. Your work will directly impact the security resilience of client operations, positioning you as a key advisor in the evolving cybersecurity landscape.

Key Responsibilities

• Lead deployment and optimization of SIEM and SOAR tools, enhancing security operations.  Enable SIEM to SOAR automation, ability to threat hunt and perform investigation, and content development (reporting, dashboard, and context searching).
• Lead migration of rules and use cases of SIEM to another SIEM.
• Lead deployment and optimization of SIEM/SOAR tool integration, enhancing security operations and alert flow and enrichment with security technologies such as EDR/XDR, VM, OT, NDR, and ITSM.  Deployment and optimization of SIEM infrastructure, log collection/aggregation, forwarding, centralization, search, and retention.
• Provide strategy and deployment of AI inherent capabilities native to SIEM and SOAR technologies.
• Develop and implement custom rules, playbooks, and workflows tailored to client needs.
• Provide hands-on training and ongoing support for security teams on SIEM and SOAR systems.
• Conduct thorough risk assessments and security audits, ensuring compliance with industry standards.
• Collaborate with clients to understand their unique security needs and offer expert guidance.
• Stay current with emerging cybersecurity threats and technologies, recommending best practices.

Who You Are
You have a deep understanding of security principles, practices, and technologies. You excel in implementing SIEM and SOAR solutions and possess strong analytical skills to troubleshoot and optimize these tools. You are a proactive communicator, able to explain complex security concepts to both technical and non-technical audiences. With a collaborative mindset and a passion for staying ahead of security trends, you thrive in a fast-paced, dynamic environment.

Who You Are

Required Skills and Experience

• 5+ years of experience in information security consulting, with a focus on SIEM/SOAR deployment.
• Expertise in security assessments, risk management, and using frameworks like NIST.
• Proficient in SIEM and SOAR tools, with experience in incident response and optimization.
• Strong analytical, problem-solving, and communication skills.
• Experience working with global Security Operations Centers (SOCs).
• Knowledge of industry standards and best practices for SIEM and SOAR.

Preferred Skills and Experience

• Advanced certifications such as CISSP, CISM, or CEH.
• Experience with cloud security, Zero Trust, and emerging technologies (IoT, AI).
• Leadership and project management skills.
• Familiarity with trends in SIEM/SOAR technologies and the ability to develop innovative strategies.
• Familiar with SIEM/SOAR integration technologies and methods; SOAR, EDR, VM, OT, ITSM, and Log Collection/Storage/Data Lake/Search

Being You

Diversity is a whole lot more than what we look like or where we come from, it’s how we think and who we are. We welcome people of all cultures, backgrounds, and experiences. But we’re not doing it single-handily: Our Kyndryl Inclusion Networks are only one of many ways we create a workplace where all Kyndryls can find and provide support and advice. This dedication to welcoming everyone into our company means that Kyndryl gives you – and everyone next to you – the ability to bring your whole self to work, individually and collectively, and support the activation of our equitable culture. That’s the Kyndryl Way.

What You Can Expect

With state-of-the-art resources and Fortune 100 clients, every day is an opportunity to innovate, build new capabilities, new relationships, new processes, and new value. Kyndryl cares about your well-being and prides itself on offering benefits that give you choice, reflect the diversity of our employees and support you and your family through the moments that matter – wherever you are in your life journey. Our employee learning programs give you access to the best learning in the industry to receive certifications, including Microsoft, Google, Amazon, Skillsoft, and many more. Through our company-wide volunteering and giving platform, you can donate, start fundraisers, volunteer, and search over 2 million non-profit organizations.  At Kyndryl, we invest heavily in you, we want you to succeed so that together, we will all succeed.

Get Referred!

If you know someone that works at Kyndryl, when asked ‘How Did You Hear About Us’ during the application process, select ‘Employee Referral’ and enter your contact's Kyndryl email address.