IBM Security Operations Center (SOC) Incident Response Manager in St Louis, Missouri
Cybersecurity is one of the most critical issues of our generation. No other company has the powerful combination of talent, industry-leading security technology, global reach and cognitive capabilities, powered by Watson to combat the cybersecurity threats.
Within IBM’s North America Security Service practice, we are constantly seeking security skills that can further enhance the depth and expertise needed by the marketplace.
We have many exciting opportunities in IBM’s Security Services business unit. We are looking for an experienced Security Operations Center (SOC) Incident Response Manager with readiness for 24/7 working time system.
Prefer candidates located in Boston, MA.
On this project you will be working as a member of the Integrated Security Tower and performing the following duties on behalf of IBM and our client:
Liaising with the Customer as focal point for all high priority & major incidents reported
Planning, coordinating, and controlling the restoration of simple, complex or high impact of system problems that occur within the production environment of client's systems
Handling conflict situations and making critical decisions while driving incidents
Developing strong working relationships with support teams and management
Providing support and participating in the Change Control Board and change control process
Providing appropriate inputs to the problem management process while supporting other team members including Service Restoration Managers and Problem Managers in processes and techniques used to manage major incidents
Provide oversight of the 24x7x365 SOC and Security Tools Engineering teams to support security monitoring, protection, and delivery of security services for IBM Security clients
Responsible for overall situational awareness, security posture, and overall dedicated onsite position with the client
Required Technical and Professional Expertise
At least 1 year of experience with Incident Management, Problem Management and Change Management processes
At least 5 years of experience in cybersecurity operations and maintenance environment
At least 5 years of experience in leadership and management of teams in cybersecurity or technical field
At least 5 years of experience in Security Event log monitoring
At least 5 years of experience in Network/System traffic/event analysis
At least 5 years of experience in Vulnerability Management
At least 5 years of experience in Security Tools
At least 5 years of experience in Intrusion Detection/Prevention Monitoring
Good understanding of production IT Environment and IT Operations such as Intel / DBA/ Unix / Windows OS/Exchange and Remote Server Management domains etc.
Preferred Tech and Prof Experience
Experience in Critical Situations Management
Knowledge of Conflict Management techniques
DoD 8570 Compliant certification such as Security+ or CISSP
IBM is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.