IBM

In this role, you'll work in one of our IBM Consulting Client Innovation Centers (Delivery Centers), where we deliver deep technical and industry expertise to a wide range of public and private sector clients around the world. Our delivery centers offer our clients locally based skills and technical expertise to drive innovation and adoption of new technology.

A Security Consultant is a cybersecurity professional responsible for safeguarding an organization’s computer systems, endpoints, and sensitive data against cyber threats. They play a critical role in maintaining the confidentiality, integrity, and availability of organizational information by implementing and managing robust endpoint security and data protection solutions. This role ensures that security incidents are detected, prevented, and swiftly responded to maintaining the organization's cybersecurity posture and ensuring compliance with internal and regulatory data protection requirements.

Endpoint Security & DLP Management

• Design, implement, and manage endpoint security and Data Loss Prevention (DLP) solutions (e.g., Forcepoint, Symantec DLP, Microsoft Purview).
• Configure DLP policies to monitor and prevent unauthorized data access, transfer, or exfiltration across all endpoints.
• Perform continuous monitoring and tuning of DLP alerts and endpoint agents to ensure policy enforcement and coverage.
• Collaborate with infrastructure, application, and business teams to align endpoint and DLP policies with operational and compliance requirements.
• Ensure endpoint protection tools (AV, EDR, DLP) are properly deployed, updated, and aligned with security standards and best practices.

Incident Response and Security Assessments

• Respond to DLP-related incidents and support investigations, containment, and remediation activities
• Conduct regular endpoint and DLP control assessments, identifying gaps and providing mitigation recommendations.
• Monitor data usage and movement to detect anomalies, enforce data classification policies, and prevent policy violations.
• Support compliance teams in audit preparations and evidence gathering related to endpoint and data protection.
• Document incidents and provide technical input into root cause analysis and lessons learned exercises.

Security Excellence & Best Practices

• Stay informed on emerging endpoint and data protection threats, tools, and tactics to enhance technical defense strategies.
• Evaluate new security solutions, recommend enhancements to existing DLP and endpoint protection platforms.
• Develop and maintain security documentation, including standard operating procedures, configuration baselines, and knowledge articles.
• Conduct awareness sessions for users on endpoint hygiene, data security policies, and DLP best practices.

• Experience with endpoint and DLP tools such as CrowdStrike, Trend Micro, Forcepoint DLP, Symantec DLP, or Microsoft Purview.
• Solid understanding of Windows, MacOS, and Linux operating systems and endpoint configurations.
• Working knowledge of data protection controls, threat detection, and incident response processes.
• Familiarity with security event triage and root cause analysis related to data protection incidents.

• Hands-on experience managing enterprise-grade DLP policies and alerts across various data channels (endpoints, email, cloud, etc.).
• Exposure to regulatory requirements and compliance frameworks (PDPA, GDPR, HIPAA, NIST, ISO 27001).
• Experience working in regulated industries such as financial services, healthcare, or telecom.