Senior Consultant - SIOC
IBM -
Riyadh, Saudi ArabiaPosted 4 years ago11People have clicked1 open position
Job Details
Experience Needed:
Career Level:
Education Level:
Salary:
Job Categories:
Skills And Tools:
Job Description
Your Role and Responsibilities
- As a Senior Consultant in the IBM Security Services Practice you will be someone who can speak about the entire security landscape with a client’s senior management or executive team.
- You should have depth of knowledge and experience in core security domains SOC Enablement/Operations, SIEM, Threat Hunting, Threat Intelligence, Use Cases, IOC’s.
- You will provide subject matter expertise in the form of briefings, workshops, and/or consulting engagements within their domain that assess a client’s security capabilities as well as recommending solutions to enhance a client’s overall security capabilities.
- Such client security capabilities may involve policy, process, technology, governance or organizational areas. Consultants will identify improvements in the current environment and recommend best practices to help them build a sound Security Operation Center.
- The role is Senior SIOC Managing Consultant with strong SIOC (Security Information & operation consultancy) skills like designing, implementing and managing (processes, technology, governance model, people).
Core consulting
- Strong communication and presentation skills
- Strong writing skills
- Comfortable working in a project based / client serving model
- Ability to shape client expectations
- Drive client pursuits and engage in complex deals
- Ability to work with global and diverse teams in a dynamic environment
- Ability to work in a matrix management model
Security Technical Skills
- You understand and how to build use-cases, because you know what you’re looking for. For example, you understand how ransomware and other malware or threats technically works, which logs they write to, their IOCs, network flows, and behaviors; thus, you are adapt at building custom use-cases that hunt for early indicators.
- Additionally, you understand how to hunt for threats, the relationship it has with forensic investigations, and creating extracts that divulge targets and areas of interest.
- Also, you are able to design Threat Hunting programs which can be taught to other analysts, or even be automated using artificial intelligence. False positives are your sworn enemies.
- The ideal candidate is not your typical SIEM person. Rather you are a person who can write your own queries and scripts that will allow you to search through logs, network flows, and other areas to correlate security events of interest. You are able to de-construct attacks and threats.
Job Requirements
Required Technical and Professional Expertise
- Broad knowledge of IT, Business and Information Security landscape
- Excellent organizational, analytical, written, verbal and presentation skills
- Deep technical knowledge in working experience in at least 2 areas of Information Security such as:
- Data Discovery, Data Classification, Governancev (preferred)
- Identity and Access Management
- Encryption
- Monitoring and Auditing
- Data Loss Prevention
- Vulnerability Testing
- Hands-on experience in security products such as IBM Guardium, Symantec DLP, AppScan, QRadar, Tanium, McAfee, Imperva, ForcePoint or other similar
- Knowledge in and experience executing cybersecurity aspects of industry frameworks or regulations such as NIST, SOC, ISO 27002, PCI-DSS, HIPAA or others
Preferred Technical and Professional Expertise
- At least 3 years experience in management consulting and systems integration
- At least 3 to 5 years experience Interpersonal skills with the ability to establish and working relationships in a project based / client serving model, and work closely with people at different levels of an organization
- At least 3 to 5 years experience in working across diverse teams to facilitate solutions
- At least 3 to 5 years years experience in management consulting or Managed Security Services
- At least 3 to 5 years experience in working with security consulting teams
Security Domain Skills
- Experience designing, implementing and managing (processes, technology, governance model, people)
- Depth of knowledge of the core security domain: SOC Enablement & Operations; SIEM
- An understand of contemporary and legacy security technologies used within the particular domain SIEM
- Product knowledge of SIEM : Qradar is a plus , ArcSight, SPLUNK, etc..
- Depth of Knowledge in Use Cases and response runbooks (A Must)
- An understanding of Threat Intelligence and Threat Hunting
- Basic understanding of compliance issues (ISO 27001, PCI , COBIT, GDPR, POPII, etc..)
Featured Jobs
Similar Jobs
- Senior Consulting Cloud Archit...Bespin Global MEA, an e& enterprise Company - Riyadh, Saudi Arabia7 days ago
- Senior Travel ConsultantTravexs Travel & Tourism Employment Services - Riyadh, Saudi Arabia19 days ago