CASY-MSCCN Jobs

CASY-MSCCN Logo
Home View All Jobs (2,302,463)

Job Information

IBM SOC Engineer -SIEM Engineer in Gurgaon, India

Introduction

At IBM, work is more than a job - it's a calling: To build. To design. To code. To consult. To think along with clients and sell. To make markets. To invent. To collaborate. Not just to do something better, but to attempt things you've never thought possible. Are you ready to lead in this new era of technology and solve some of the world's most challenging problems? If so, lets talk.

Your Role and Responsibilities

Who you are:

We are actively seeking an experienced and highly skilled resource to join our elite cybersecurity team. In this role, you will play a critical part in shaping and implementing advanced security strategies to safeguard our organization against sophisticated cyber threats.

What you'll do:

Primary Responsibility:

  • Working experience of 8+ Years

  • SOC Engineer would work closely with the SOC team and be responsible for SIEM engineering activities such as log source integration, Use case development and enhancement, Rule tuning, dashboard and report development, and Platform upgradation.

  • Support the incident response team during an incident.

  • Hands-on experience with configurations and management of SIEM tools(Qradar) including log source integrations, custom parser built, fine-tuning, and optimizing the correlation rules and use cases Is a MUST.

  • Proven Experience with Security information and event management (SIEM) tools like Qradar

  • Identify quick defense techniques till permanent resolution.

  • Proven Experience with SOAR solutions like Qradar Resilient and developing workflows and playbooks

  • Recognize successful intrusions and compromises by reviewing and analyzing relevant event detail information.

  • Review incidents escalated by Level 1 analysts for rule tuning and use case enhancement

  • Launch and track investigations to resolution. Recognize attacks based on their signatures, and differentiates false positives from true intrusion attempts.

  • Actively investigates the latest in security vulnerabilities, advisories, incidents, and penetration techniques and notifies end users when appropriate.

  • Identify the gaps in the security environment & suggest the gap closure

  • Drive & Support Change Management

  • Performs and reviews tasks as identified in a daily task list.

  • Report Generation and Trend Analysis. Front-ending the governance meeting with the customer and walkthrough of the security status from SOC's perspective to the customer/stakeholders.

  • Good to have hands-on experience with managing SIEM solutions on public/private clouds like Amazon AWS, Microsoft Azure, etc.

  • Willing to work in a 24x7 rotational shift model including the night shift.

KRA:

  • Identify the security gaps and drive for closure through Change Mgmt

  • To explore different security technologies available in the market

  • Install Build, Test, and Configure SIEM related systems

  • Maintain security dashboards

  • Coordination with internal customers for their security-related problems and providing solutions.

  • Documentation of security solutions

  • Handle L2 and above-level technical escalations from the Operations team and resolve them within SLA.

  • Work closely with L1 team members to provide quick support & and escalation.

  • Train other analysts in their roles and responsibilities

  • Develop and maintain the SOAR workflows and playbooks

How we'll help you grow:

You'll have access to all the technical and management training courses you need to become the expert you want to be.

Our team leads love to mentor in case of technical difficulty.

You have the opportunity to work in many different areas to figure out what really excites you

Required Technical and Professional Expertise

  • Hands-on experience required in Qradar SIEM and SOAR.

  • Desired experience in Threat hunting, Threat intelligence.

  • Worked on tools belongs to Qradar, UEBA, UAX.

  • Must have desire to learn or cross skill with new technologies.

  • Must be able to work in morning, evening, and night shifts (24*7) - Mandatory.

  • Bachelor's degree in engineering/information security, or a related field.

  • Relevant certifications such as CEH, CISSP, CISM, CompTIA CASP+, or equivalent.

  • Proven experience to work in a SOC environment.

  • Deep technical knowledge of security technologies and advanced threat landscapes.

  • Proven experience in managing and responding to complex security incidents.

  • Strong analytical and problem-solving skills.

  • Excellent communication and collaboration abilities.

  • Ability to work in a fast-paced, dynamic environment.

Preferred Technical and Professional Expertise

  • None

About Business UnitIBM Consulting is IBM's consulting and global professional services business, with market leading capabilities in business and technology transformation. With deep expertise in many industries, we offer strategy, experience, technology, and operations services to many of the most innovative and valuable companies in the world. Our people are focused on accelerating our clients' businesses through the power of collaboration. We believe in the power of technology responsibly used to help people, partners and the planet.

This job requires you to be fully COVID-19 vaccinated prior to your start date and proof of vaccination status will be required before your start date. During the Onboarding process you will be asked to confirm your vaccination status, in case you are unable to get vaccinated for any reason, you can let us know at that stage. Please let us know if you are unable to be vaccinated due to medical or religious reasons. IBM will consider such requests on a case by case basis subject to submission of required proof by the candidate before a stipulated date.

Your Life @ IBMIn a world where technology never stands still, we understand that, dedication to our clients success, innovation that matters, and trust and personal responsibility in all our relationships, lives in what we do as IBMers as we strive to be the catalyst that makes the world work better.

Being an IBMer means you'll be able to learn and develop yourself and your career, you'll be encouraged to be courageous and experiment everyday, all whilst having continuous trust and support in an environment where everyone can thrive whatever their personal or professional background.

Our IBMers are growth minded, always staying curious, open to feedback and learning new information and skills to constantly transform themselves and our company. They are trusted to provide on-going feedback to help other IBMers grow, as well as collaborate with colleagues keeping in mind a team focused approach to include different perspectives to drive exceptional outcomes for our customers. The courage our IBMers have to make critical decisions everyday is essential to IBM becoming the catalyst for progress, always embracing challenges with resources they have to hand, a can-do attitude and always striving for an outcome focused approach within everything that they do.

Are you ready to be an IBMer?

About IBMIBM's greatest invention is the IBMer. We believe that through the application of intelligence, reason and science, we can improve business, society and the human condition, bringing the power of an open hybrid cloud and AI strategy to life for our clients and partners around the world.Restlessly reinventing since 1911, we are not only one of the largest corporate organizations in the world, we're also one of the biggest technology and consulting employers, with many of the Fortune 50 companies relying on the IBM Cloud to run their business. At IBM, we pride ourselves on being an early adopter of artificial intelligence, quantum computing and blockchain. Now it's time for you to join us on our journey to being a responsible technology innovator and a force for good in the world.

Location StatementWhen applying to jobs of your interest, we recommend that you do so for those that match your experience and expertise. Our recruiters advise that you apply to not more than 3 roles in a year for the best candidate experience.

For additional information about location requirements, please discuss with the recruiter following submission of your application.

Being You @ IBMIBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.

DirectEmployers