Security Incident Handler - QRadar

Introduction
In this role you’ll work in one of our IBM Consulting Client Innovation Centers (Delivery Centers) where we deliver deep technical and industry expertise to a wide range of public and private sector clients around the world.​ Our delivery centers offer our clients locally based skills and technical expertise to drive innovation and adoption of new technology.

We focus on your professional development through ongoing learning mentorship development of technical skills and continuous personal growth all grounded in a culture of coaching and career advancement. If you see yourself as someone who never stops learning and who wants to unleash your potential the IBM Consulting Associates Program is for you.

A career in IBM Consulting is rooted by long-term relationships and close collaboration with clients across the globe.

You’ll work with visionaries across multiple industries to improve the hybrid cloud and AI journey for the most innovative and valuable companies in the world. Your ability to accelerate impact and make meaningful change for your clients is enabled by our strategic partner ecosystem and our robust technology platforms across the IBM portfolio; including Software and Red Hat.

Curiosity and a constant quest for knowledge serve as the foundation to success in IBM Consulting. In your role you’ll be encouraged to challenge the norm investigate ideas outside of your role and come up with creative solutions resulting in ground breaking impact for a wide network of clients. Our culture of evolution and empathy centers on long-term career growth and development opportunities in an environment that embraces your unique skills and experience.

Your Role and Responsibilities
As an entry level Security Consultant you’ll unleash your exceptional technical prowess to gather and analyze business and technical requirements skillfully crafting and implementing resilient Enterprise-wide Access Management processes and procedures.

• Analyze events flows alerts and advance analysis of Potential Security incidents
• Correlate events and find tuning opportunities to have a healthy environment on customer’s console
• Work with customers during crisis times to help mitigate the crisis and better client security posture to ensure crisis does not occur again
• Make recommendations to clients about increasing security
• Analyze traffic trends across customer base for large trends
• Report Security Events and make customer escalations based on traffic analysis
• Work with client to help remediate and answer questions regarding security events
• Identify trends in traffic and make recommendations to clients based on trends
• Make recommendation to clients to improve security posture
• Stay abreast of current and upcoming threats
• Participate in regular meetings with teams to determine appropriate actions required to address new developing Security Threats
• Work with customers during crisis times to help mitigate the crisis and better client security posture to ensure crisis does not occur again
• Make recommendations to clients about increasing security
• Create Security Events and make customer escalations based on traffic analysis
• Work with client to help remediate and answer questions regarding security events
• Identify trends in traffic and make recommendations to clients based on trends
• Participate in Client calls to tune security policy to client need
• Make recommendation to clients to improve security posture
• Support and Drive Vision

Required Technical and Professional Expertise

• Experience with QRadar (3 or more years)
• Hands on experience in cyber security
• Hands on experience in incident management and threat investigator

**This job position is limited to residents in Colombia only**

Preferred Technical and Professional Expertise

• Proficiency in English
• Experience with other SIEM’s tools as: Splunk ES o Sentinel.