Security Specialist

Introduction
At IBM work is more than a job – it’s a calling: To build. To design. To code. To consult. To think along with clients and sell. To make markets. To invent. To collaborate. Not just to do something better but to attempt things you’ve never thought possible. Are you ready to lead in this new era of technology and solve some of the world’s most challenging problems? If so lets talk.

Your Role and Responsibilities
Who you are:
We are actively seeking an experienced and highly skilled resource to join our elite cybersecurity team. In this role you will play a critical part in shaping and implementing advanced security strategies to safeguard our organization against sophisticated cyber threats.

What you’ll do:
Primary Responsibility:

• Support the management and updating of antivirus and EDR solutions.
• Assist in basic threat assessments and incident response activities.
• Monitor and analyze antivirus and EDR alerts for potential threats.
• Conduct in-depth analysis of malware incidents.
• Manage and update antivirus solutions and Endpoint Detection and Response (EDR) tools.
• Conduct periodic threat assessments and implement necessary measures.
• Spearhead the management and optimization of antivirus and EDR solutions.
• Design and implement advanced threat hunting and response strategies.
• Able to manage compliance and coverage of endpoints
• AV signature and platform version update as needed.
• Ensuring GPO policy push and updated on all endpoints
• AV/EDR agent deployment at endpoints/devices
• Perform operational activities to maintain to AV/EDR system including backup health check patching configuration BCP testing etc.

Secondary Responsibility:

• Good to have knowledge in Seclore IRM MFA DLP Proxy Email security O365 security.
• Monitor and manage MFA systems for secure user authentication.
• Investigate and respond to incidents related to MFA.
• Deploy and manage MFA solutions to enhance user authentication security.
• Able to manage compliance and coverage of endpoints
• Agent enrolment in machines to ensure coverage.
• Troubleshooting of end user issues at endpoints
• Troubleshooting of end user issues at endpoints for proxy
• Proxy agent installation and uninstallation at endpoint
• Conduct investigations into email and collaboration security incidents.
• Administer security features in Office 365 to protect email files and collaboration tools.
• Conduct thorough investigations into phishing and malware attacks.
• Manage and optimize email security solutions to safeguard against phishing and malware attacks.

How we’ll help you grow:
You’ll have access to all the technical and management training courses you need to become the expert you want to be.
Our team leads love to mentor in case of technical difficulty.
You have the opportunity to work in many different areas to figure out what really excites you

Required Technical and Professional Expertise

• Hands-on experience required in Antivirus (AV) and EDR.
• Desired experience in Seclore IRM MFA DLP Proxy Email security O365 security.
• Worked on tools belongs to CrowdStrike McAfee ePO Seclore Gemalto Thales Forcepoint Proofpoint MS O365.
• Must have desire to learn or cross skill with new technologies.
• Must be able to work in morning evening and night shifts – Mandatory.
• Bachelor’s degree in engineering/information security or a related field.
• Relevant certifications such as CEH CISSP CISM CompTIA CASP+ or equivalent.
• Proven experience to work in a SOC environment.
• Deep technical knowledge of security technologies and advanced threat landscapes.
• Proven experience in managing and responding to complex security incidents.
• Strong analytical and problem-solving skills.
• Excellent communication and collaboration abilities.
• Ability to work in a fast-paced dynamic environment.

Preferred Technical and Professional Expertise

• NONE