Saltar al contenido
Introducción

In this role, you'll work in one of our IBM Consulting Client Innovation Centers (Delivery Centers), where we deliver deep technical and industry
expertise to a wide range of public and private sector clients around the world. Our delivery centers offer our clients locally based skills and technical
expertise to drive innovation and adoption of new technology.

A career in IBM Consulting is rooted by long-term relationships and close collaboration with clients across the globe.
You'll work with visionaries across multiple industries to improve the hybrid cloud and AI journey for the most innovative and valuable companies in
the world. Your ability to accelerate impact and make meaningful change for your clients is enabled by our strategic partner ecosystem and our
robust technology platforms across the IBM portfolio; including Software and Red Hat.

Curiosity and a constant quest for knowledge serve as the foundation to success in IBM Consulting. In your role, you'll be encouraged to challenge
the norm, investigate ideas outside of your role, and come up with creative solutions resulting in ground breaking impact for a wide network of
clients. Our culture of evolution and empathy centers on long-term career growth and development opportunities in an environment that embraces
your unique skills and experience.

Su función y responsabilidades

As a L3 SIEM Engineer, your responsibilities may encompass the following activities:

SIEM Implementation and Management

  • Design and deploy SIEM solutions tailored to organizational and client-specific needs.
  • Configure data sources, log collection mechanisms, and parsing for effective data ingestion and correlation.
  • Maintain, update, and optimize SIEM rules, alerts, and dashboards to ensure high performance

Threat Detection and Response

  • Develop and implement custom use cases, correlation rules, and workflows to identify and mitigate threats.
  • Integrate threat intelligence platforms with SIEM systems for enhanced detection capabilities.
  • Support incident response activities by providing event correlation, log analysis, and forensic insights.


System Optimization

  • Continuously fine-tune SIEM performance to reduce false positives and improve detection accuracy.
  • Ensure high availability, scalability, and redundancy of SIEM platforms.
  • Work with vendors to troubleshoot issues, apply updates, and implement patches.


Collaboration and Reporting

  • Collaborate with security analysts, SOC teams, and IT professionals to enhance threat detection capabilities.
  • Generate regular reports on security trends, incidents, and compliance metrics.
  • Mentor and train team members on SIEM functionalities, best practices, and new developments.


Compliance and Documentation

  • Ensure SIEM configurations comply with industry and regulatory standards (e.g., GDPR, ISO 27001, PCI-DSS).
  • Maintain comprehensive documentation of SIEM configurations, processes, and incident handling procedures.


 Weekly and Monthly Client Debrief Reporting

  • Prepare and deliver comprehensive weekly and monthly SIEM debrief reports for clients, including insights on security trends, incidents, system performance, and recommendations.
  • Engage with clients during debrief meetings to address questions, gather feedback, and align on security objectives.
Educación requerida
Licenciatura
Experiencia profesional y técnica requerida
  • More than 3 years of hands-on experience with SIEM platforms such as Splunk, QRadar, ArcSight, Microsoft Sentinel, or LogRhythm.
  • Strong understanding of cybersecurity principles, threat intelligence, and incident response processes.     
  • Familiarity with log management, data normalization, and network protocols.
  • Creating Dashboards & Data Parsing: expertise in creating and managing custom dashboards, rules, reports, and alerts & advanced ability to ingest, parse, and normalize log data from diverse sources (e.g., firewalls, endpoints, cloud platforms, applications).
  • Scripting, Log collection & Compliance Frameworks: proficiency in scripting languages like Python or PowerShell for automation and customization, hands-on experience with log collection protocols (e.g., Syslog, Windows Event Logs, API integrations) & knowledge of compliance frameworks and standards such as NIST, CIS, and MITRE ATT&CK.
Experiencia técnica y profesional preferida
  • Strong analytical and problem-solving abilities with keen attention to detail.
  • Excellent communication and collaboration skills, with the ability to interact effectively with stakeholders at all levels.
  • Capable of managing multiple priorities in a fast-paced, dynamic environment.
  • Certifications:
    • Splunk Certified Admin/Architect, IBM QRadar Certified Deployment Professional, or equivalent SIEM-specific certifications
    • General security certifications such as CISSP, GSEC, or GIAC SIEM.

Acerca de la Unidad de Negocios

IBM Consulting es la unidad de negocio encargada de la consultoría y servicios profesionales globales de IBM, con capacidades líderes en el mercado en transformación empresarial y tecnológica. Con una gran experiencia en diversas industrias, ofreciendo servicios de estrategia, experiencia, tecnología y operaciones a muchas de las empresas más innovadoras y valiosas del mundo. IBMers en Cosnulting se enfocan en acelerar los negocios de nuestros clientes a través del poder de la colaboración. Creemos en el poder de la tecnología utilizada de manera responsable para ayudar a las personas, los socios y el planeta.

SU VIDA @ IBM

In a world where technology never stands still, we understand that, dedication to our clients success, innovation that matters, and trust and personal responsibility in all our relationships, lives in what we do as IBMers as we strive to be the catalyst that makes the world work better.

Being an IBMer means you’ll be able to learn and develop yourself and your career, you’ll be encouraged to be courageous and experiment everyday, all whilst having continuous trust and support in an environment where everyone can thrive whatever their personal or professional background.

 

Our IBMers are growth minded, always staying curious, open to feedback and learning new information and skills to constantly transform themselves and our company. They are trusted to provide on-going feedback to help other IBMers grow, as well as collaborate with colleagues keeping in mind a team focused approach to include different perspectives to drive exceptional outcomes for our customers. The courage our IBMers have to make critical decisions everyday is essential to IBM becoming the catalyst for progress, always embracing challenges with resources they have to hand, a can-do attitude and always striving for an outcome focused approach within everything that they do.

 

Are you ready to be an IBMer?

Acerca de IBM

IBM’s greatest invention is the IBMer. We believe that through the application of intelligence, reason and science, we can improve business, society and the human condition, bringing the power of an open hybrid cloud and AI strategy to life for our clients and partners around the world.

 

Restlessly reinventing since 1911, we are not only one of the largest corporate organizations in the world, we’re also one of the biggest technology and consulting employers, with many of the Fortune 50 companies relying on the IBM Cloud to run their business. 

 

At IBM, we pride ourselves on being an early adopter of artificial intelligence, quantum computing and blockchain. Now it’s time for you to join us on our journey to being a responsible technology innovator and a force for good in the world.

Otros detalles relevantes del empleo

For additional information about location requirements, please discuss with the recruiter following submission of your application.