Security Consultant-EDR

Introduction
Information and Data are some of the most important organizational assets in today’s businesses. As a Security Consultant you will be a key advisor for IBM’s clients analyzing business requirements to design and implement the best security solutions for their needs. You will apply your technical skills to find the balance between enabling and securing the client’s organization with the cognitive solutions that are making IBM the fastest growing enterprise security business in the world.

Your Role and Responsibilities

We are looking for a skilled Cybersecurity Analyst with expertise in FireEye tools and solutions to join our security operations team. The ideal candidate will have hands-on experience with FireEye’s advanced security platforms threat detection and incident response systems. You will play a crucial role in identifying investigating and mitigating security threats and ensuring the overall protection of our organization’s critical systems.

Responsibilities

• Use FireEye platforms such as NX HX EX and AX to detect and respond to advanced threats.
• Act as a first line of defence by responding to security incidents and performing root cause analysis using FireEye solutions.
• Ensure FireEye systems are correctly configured updated and integrated within the security ecosystem.
• Conduct vulnerability assessments and provide recommendations on mitigations for identified risks using FireEye threat intelligence feeds.
• Collaborate with the broader security team to enhance and enforce cybersecurity policies and procedures.
• Document security incidents resolutions and remedial actions for senior management and audit purposes.
• Regularly review threat intelligence and keep abreast of the latest security trends and technologies to recommend enhancements.
• Communicate with vendors and internal stakeholders to troubleshoot and optimize security tools and strategies.

Required Technical and Professional Expertise

• Bachelor’s degree in Computer Science Information Technology Cybersecurity or a related field.
• 2+ years of experience in cybersecurity with a focus on threat detection incident response or similar roles.
• Hands-on experience with FireEye products such as FireEye NX HX EX AX or a combination of these.
• Proficiency in analysing and interpreting system logs SIEM data and packet captures.
• Strong understanding of malware analysis threat hunting and network forensics.
• Industry certifications like CISSP CEH GCFA or FireEye Certified (preferred but not required).
• Strong analytical skills and the ability to work under pressure in fast-paced environments.
• Excellent communication and teamwork skills.

Preferred Technical and Professional Expertise

• Experience with other security tools such as Splunk Carbon Black CrowdStrike or Palo Alto.
• Knowledge of MITRE ATT&CK framework Indicators of Compromise (IoCs) and Tactics Techniques and Procedures (TTPs).
• Familiarity with scripting languages like Python PowerShell or Bash for automating security tasks.