SIEM Administrator

Job Description
SIEM Administrator

Job Summary:
We have an excellent opportunity for an Admin Support Analyst and Integration Engineer to support strategic clients across the region to drive strategy around various security consulting initiatives. This is an opportunity to work with IBM security services team that is operating on the cutting-edge of information security.

Why IBM Security Services?
IBM Security has 10,000 clients in 133 countries, 6,000 researchers, developers, and SMEs focused on security, 3,700 security-related patents, and 36 IBM Security locations across the globe.

High-growth areas are security analytics/SIEM (10%); Threat Intelligence (10%+); Mobile Security (18%); and Cloud Security (50%)

IBM Security QRadar is again a leader in Gartner's 2015 Magic Quadrant for SIEM .

Key Responsibilities:
The Admin Support Service Analyst and Integration Engineer role is part of the SOC. Candidates in this role will manage TP-SOC core infrastructure namely SIEM, Vulnerability Management, Configuration Management etc. Ideal candidates will have experience managing network security infrastructure. Must display enthusiasm and interest in Information Security.

Job Requirements:

  • Strong Analytical and Problem Solving Skills
  • Knowledge of network security infrastructure
  • Knowledge of patch management
  • Experience with log management or security information management tools
  • Effective verbal and written communication skills
  • Knowledge of Systems Administration, Middleware, and Application Administration
  • Knowledge of Network and Network Security tools administration


Required Technical and Professional Expertise

Technical Competencies
  • Strong Analytical and Problem Solving Skills
  • Knowledge of security intelligence threats and threat actors.
  • Knowledge of log formats for syslog, http logs, DB logs and how to gather forensics for traceability back to event
  • Knowledge of packet capture and analysis
  • Experience with log management or security information management tools
  • Experience with Security Assessment tools (NMAP, Nessus, Metasploit, Netcat)
  • Ability to make information security risk determinations based of threat intelligence analysis
  • Effective verbal and written communication skills


Preferred Tech and Prof Experience

Training, Qualifications, and Certifications
Preferred:
  • IBM Security Network Intrusion Prevention System Configuration and Deployment
  • IBM Security SiteProtector System: Basic Implementation and Administration
  • IBM Security QRadar SIEM 7.2 Foundations
  • IBM Security QRadar SIEM 7.2 Administration and Configuration

Recommended:
  • Cisco Certified Network Administrator (CCNA)
  • Security Essentials - SEC401 (optional GSEC certification)
  • Advanced Security Essentials - SEC501 (optional GCED certification)


EO Statement
IBM is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.


Back to top