IBM Global Financing
Website:
ibm.com
Job details:
Introduction
A career in IBM Consulting is built on long-term client relationships and close collaboration worldwide. You’ll work with leading companies across industries, helping them shape their hybrid cloud and AI journeys. With support from our strategic partners, robust IBM technology, and Red Hat, you’ll have the tools to drive meaningful change and accelerate client impact. At IBM Consulting, curiosity fuels success. You’ll be encouraged to challenge the norm, explore new ideas, and create innovative solutions that deliver real results. Our culture of growth and empathy focuses on your long-term career development while valuing your unique skills and experiences.
Your Role And Responsibilities
Looking for a skilled
SIEM & SOAR Engineer/Analyst to enhance the organization’s cybersecurity posture by monitoring, detecting, analyzing, and responding to security incidents. The candidate will be responsible for managing SIEM platforms, developing SOAR playbooks, and automating incident response processes.
SIEM Management:
- Administer and manage SIEM tools (e.g. IBM QRadar, Microsoft Sentinel)
- Develop and tune correlation rules, alerts, and use cases
- Monitor security events and logs across network, endpoints, and cloud environments
- Perform log source integration and normalization
- Reduce false positives and improve detection accuracy
SOAR Automation:
- Design, develop, and maintain SOAR playbooks/runbooks
- Automate incident response workflows (phishing, malware, brute force, etc.)
- Integrate SOAR platforms (e.g., Cortex XSOAR, Splunk SOAR, IBM Resilient) with SIEM and other tools
- Enhance response efficiency using orchestration and automation
Incident Detection & Response:
- Investigate security alerts and incidents
- Conduct root cause analysis and provide remediation guidance
- Perform threat detection using SIEM queries and threat intelligence
Preferred Education
Bachelor's Degree
Required Technical And Professional Expertise
- Qualifications:
- Should be BE/B.Tech /MCA/BCA with minimum 5-8 years of expiration in cloud security or cloud infrastructure roles.
- Must have hands-on experience with Q-Radar SIEM, SOAR.
- Strong understanding of cloud security frameworks and best practices (e.g., CIS Benchmarks, NIST, ISO 27001).
- Experience with security incident response and remediation.
- Hands-on experience with SIEM tools (QRadar / Sentinel)
- Experience with SOAR platforms (Cortex XSOAR, IBM Resilient)
Strong Knowledge Of:
- Log analysis & event correlation
- Networking concepts (TCP/IP, DNS, HTTP, VPN)
- Security tools (EDR, IDS/IPS, Firewall)
- Understanding of MITRE ATT&CK, Cyber Kill Chain
Qualifications:
Preferred technical and professional experience
- Should be BE/B.Tech /MCA/BCA with minimum 5-8 years of expiration in cloud security or cloud infrastructure roles.
- Must have hands-on experience with Q-Radar SIEM, SOAR.
- Strong understanding of cloud security frameworks and best practices (e.g., CIS Benchmarks, NIST, ISO 27001).
- Experience with security incident response and remediation.
- Hands-on experience with SIEM tools (QRadar / Sentinel)
- Experience with SOAR platforms (Cortex XSOAR, IBM Resilient)
Strong Knowledge Of:
- Log analysis & event correlation
- Networking concepts (TCP/IP, DNS, HTTP, VPN)
- Security tools (EDR, IDS/IPS, Firewall)
- Understanding of MITRE ATT&CK, Cyber Kill Chain
Click on Apply to know more.