Accéder directement au contenu
Introduction

We are looking for an L1 SOC Analyst (Threat Monitoring) to join our Security Operations Center (SOC) team. As an L1 Analyst, you will play a crucial role in monitoring, analyzing, and responding to security alerts, ensuring swift incident detection and escalation. This is an exciting opportunity for those who want to build a career in cybersecurity while working with cutting-edge security tools and methodologies.

Rôle et responsabilités
  • Monitor security alerts in real-time from SIEM and other security tools.
  • Perform Level 1 triage of security incidents by analyzing logs, network traffic, and endpoint events.
  • Investigate suspicious activity and escalate security events according to SOC guidelines.
  • Analyze and correlate security data from multiple sources to identify potential threats.
  • Coordinate with Level 2 and Level 3 analysts for complex investigations.
  • Escalate high-priority incidents and provide detailed incident reports.
  • Monitor the health of SIEM alerts and dependencies to ensure continuous security monitoring.
  • Assist in forensic investigations by gathering relevant security logs and evidence.
  • Identify and report false positives to fine-tune security monitoring rules.
  • Work within a ticketing system to document findings, actions, and resolutions.
  • Provide security recommendations for improving detection capabilities and security policies.
  • Support compliance and audit activities by maintaining security logs and incident documentation.
Formation requise
Baccalauréat
Expertise professionnelle et technique requise
  • Basic to Intermediate knowledge of network security, TCP/IP, and troubleshooting.
  • Familiarity with SIEM platforms such as IBM QRadar, Splunk, ArcSight, Microsoft Sentinel, or LogRhythm.
  • Understanding of log analysis and ability to interpret system, network, and security logs.
  • Knowledge of firewalls, IDS/IPS, endpoint security, and anti-malware solutions.
  • Familiarity with MITRE ATT&CK Framework for understanding adversary tactics and techniques.
  • Basic knowledge of cybersecurity frameworks such as NIST Cybersecurity Framework, CIS Controls, and ISO 27001.
  • Ability to identify and investigate phishing emails and suspicious file activity.
  • Familiarity with incident response processes and escalation procedures.
  • Basic knowledge of Linux/Unix and Windows operating systems.
  • Understanding of common network services (web, mail, DNS, authentication).
  • Knowledge of vulnerability management and basic remediation steps.
  • Understanding of threat intelligence sources and how they apply to SOC operations.
  • Strong analytical and problem-solving skills.
  • Excellent written and verbal communication skills.
Expertise professionnelle et technique souhaitée
  • CompTIA Security+
  •  Certified SOC Analyst (CSA)
  • Microsoft Security Operations Analyst (SC-200)
  • GIAC Security Essentials (GSEC)
  • IBM QRadar SIEM Training
  • MITRE ATT&CK Defender (MAD) Certifications

L'unité commerciale

IBM Consulting est l'activité de conseil et de services professionnels mondiaux d'IBM, avec des capacités de pointe dans la transformation des entreprises et des technologies. Avec une expertise approfondie dans de nombreux secteurs, nous offrons des services de stratégie, d'expérience, de technologie et d'exploitation à un grand nombre des entreprises les plus innovantes et les plus précieuses du monde. Nos collaborateurs se concentrent sur l'accélération des activités de nos clients grâce au pouvoir de la collaboration. Nous croyons au pouvoir de la technologie utilisée de manière responsable pour aider les gens, les partenaires et la planète.

VOTRE VIE CHEZ IBM

In a world where technology never stands still, we understand that, dedication to our clients success, innovation that matters, and trust and personal responsibility in all our relationships, lives in what we do as IBMers as we strive to be the catalyst that makes the world work better.

Being an IBMer means you’ll be able to learn and develop yourself and your career, you’ll be encouraged to be courageous and experiment everyday, all whilst having continuous trust and support in an environment where everyone can thrive whatever their personal or professional background.

 

Our IBMers are growth minded, always staying curious, open to feedback and learning new information and skills to constantly transform themselves and our company. They are trusted to provide on-going feedback to help other IBMers grow, as well as collaborate with colleagues keeping in mind a team focused approach to include different perspectives to drive exceptional outcomes for our customers. The courage our IBMers have to make critical decisions everyday is essential to IBM becoming the catalyst for progress, always embracing challenges with resources they have to hand, a can-do attitude and always striving for an outcome focused approach within everything that they do.

 

Are you ready to be an IBMer?

À propos d'IBM

IBM’s greatest invention is the IBMer. We believe that through the application of intelligence, reason and science, we can improve business, society and the human condition, bringing the power of an open hybrid cloud and AI strategy to life for our clients and partners around the world.

 

Restlessly reinventing since 1911, we are not only one of the largest corporate organizations in the world, we’re also one of the biggest technology and consulting employers, with many of the Fortune 50 companies relying on the IBM Cloud to run their business. 

 

At IBM, we pride ourselves on being an early adopter of artificial intelligence, quantum computing and blockchain. Now it’s time for you to join us on our journey to being a responsible technology innovator and a force for good in the world.

IBM is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.

Autres détails pertinents sur le poste

For additional information about location requirements, please discuss with the recruiter following submission of your application.