This role is designed for professionals who have multidisciplinary skills to work in the Security Operations Center applying technical and operational skills on the resolution and administration of system vulnerabilities, alerts, and trends, where innovative thinking is required for not only solving but preventing risks in our environments.
Operational Responsibilities :
Manipulation of various scanning tools
Assess and analyze scan tools
Track Vulnerabilities and develop remediation efforts
Coordination with System Owners for remediation.
Document Resolution of incidents and collect questions from stakeholders.
Coordination with Program Managers in the development of project initiatives for remediation efforts and continuous improvement.
Develop integrated brand solutions for the issues reported and become part of projects by applying the ability to automate solutions.
Ensure that IBM Cloud is in compliance with all applicable Federal, IBM Internal and industry standard directives and policies regarding securing and monitoring of information systems
Supporting Security managers in metrics tracking and reporting duties.
Enterprise-level experience managing the remediation of vulnerabilities in two or more of the following areas : Server Operating Systems (Windows Server, Red Hat, CentOS)Network (Cisco, Palo Alto, F5, McAfee)Storage (NetApp, CleverSafe)
Thorough understanding of how to calculate CVSS v2 and v3 adjusted scores
Required Technical and Professional Expertise
2+ years of information security experience OR 3+ years of applicable experience with Linux / UNIX systems in a production environment OR relevant experience.
Experience with risk management, vulnerability management, threat analysis, security auditing, security monitoring, incident response, and other information security practices preferred
Knowledge of generic information security standards / programs
Understanding of basic network concepts, familiarity with TCP / IP and VLAN functionality
Excellent written and oral communication skills with the ability to effectively communicate with information technology professionals as well as senior management and auditors, assessors, and consultants
High level of personal integrity, the ability to professionally handle confidential matters and exude the appropriate level of judgment and maturity
High degree of initiative, dependability, and ability to work with little supervision
Capability to maintain highly detailed documentation and ticketing
Preferred Tech and Prof Experience
Experience with the common tools associated with penetration testing (Metasploit, Burp Suite, Kali etc.)
Ability to effectively code in a scripting language (Python, Perl, etc.)
2+ years with experience in Project Management
Skills in process improvement in large projects or work environments
Degree in Computer Science Engineer or similar
Possession of industry certifications. Including, but not limited to, Security+, Linux+, Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Global Information Assurance Certification (GIAC) or ability to obtain after hire
Project Management knowledge or certification (PRINCE, PMP, SCRUM)
IBM is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.
IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.