Technical Consultant: Security Intel & Operations Consulting Svcs

Introduction
In this role you’ll work in one of our IBM Consulting Client Innovation Centers (Delivery Centers) where we deliver deep technical and industry expertise to a wide range of public and private sector clients around the world. Our delivery centers offer our clients locally based skills and technical expertise to drive innovation and adoption of new technology.

At IBM work is more than a job – it’s a calling: To build. To design. To code. To consult. To think along with clients and sell. To make markets. To invent. To collaborate. Not just to do something better but to attempt things you’ve never thought possible. Are you ready to lead in this new era of technology and solve some of the world’s most challenging problems? If so lets talk.

Your Role and Responsibilities

• We are seeking an experienced Palo Alto XDR and XSIAM L3 Administrator to join our team. This
  role is focused on product administration rather than threat investigation though having
  security investigation and response skills is an added advantage. The candidate must be a
  motivated fast learner who can manage and optimize the deployment and performance of Palo
  Alto XDR and XSIAM products.
• The ideal candidate will have a deep understanding of security
  operations and be capable of working independently with minimal supervision.
• The Palo Alto XDR and XSIAM L3 Administrator will be responsible for the administration
  configuration and optimization of Palo Alto XDR and XSIAM products. This role involves
  maintaining the health of the security products ensuring their effective operation and
  supporting the security operations team with necessary insights and tools.
• You will collaborate with various security teams to ensure seamless integration and functionality of the security
  tools while also providing occasional support for security investigations and incident response
  when needed.

Required Technical and Professional Expertise

• Administer configure and optimize Palo Alto XDR and XSIAM products to ensure optimal
  performance and security. Develop and document standard procedures and policies for the management and
  maintenance of security tools.
• Monitor the health and performance of the security products and resolve any issues that arise.
  Provide support for security operations by offering relevant insights and tools from Palo Alto
  XDR and XSIAM data. Assist with the implementation of security controls and risk security awareness efforts.
  Conduct regular audits and health checks of the security products to ensure they are
  functioning correctly.
• Collaborate with the security operations team to integrate Palo Alto XDR and XSIAM products
  into their workflows. Provide occasional support for security investigations and incident response as needed.
  Suggest improvements and optimizations for the use and management of Palo Alto XDR and
  XSIAM products.

Preferred Technical and Professional Expertise

• Act as an internal consultant for the business and technology units advising on best practices related to the use and administration of Palo Alto XDR and XSIAM products.
• Conduct training and knowledge-sharing sessions within the team. Experience in 24×7 CyberSecurity Operations or SOC environments within large scale and complex environments is highly desired. Relevant certifications such as Palo Alto Networks Certified Cybersecurity Associate (PCCSA) or equivalent.
• In-depth knowledge of security information and event management (SIEM) systems and Extended Detection and Response systems (XDR). Strong understanding of cybersecurity principles threat landscapes and incident response. Excellent communication and interpersonal skills to effectively collaborate with various teams.