IBM Security Intelligence Operations Delivery Consultant 

Poland, Lesser Poland Voivodeship, Krakow 

219383157

On term you should have acquired depth of knowledge and experience in Security Intelligence / Security Information and Event Management (SIEM) domain and should be able to speak across the landscape as well.
As a confirmed consultant, working under minimal supervision you will provide subject matter expertise in the form of briefings, co-delivering workshops, and/or consulting engagements within your domain that assess a client’s security capabilities. You will be recommending solutions to enhance a client’s overall security capabilities. Such client security capabilities may involve policy, process, technology, or organizational areas.

• Strong communication and presentation skills
• Ability to co-lead large groups and be a primary facilitator
• Strong writing skills
• Comfortable working in a project based / client serving model
• Influence and shape client expectations
• Ability to work with global and diverse teams in a dynamic environment
• Ability to work in a matrix management model
• The ability to travel and adapt to other cultures
• Fluency in English and 2nd European language – both verbal and written

Security Domain Skills (SIEM)

• Advanced level of knowledge in Security Intelligence/SOC Operations/Security Information and Event Management (SIEM)
• Good knowledge of SIEM products preferably QRadar
• Familiar of SOC governance and SOC processes
• Knowledge of SOC Ticketing Workflows
• Understanding of compliance issues and industry standards frameworks (e.g. ISO 27001/2)
• Working understanding of technology used to monitor logs
• A solid understanding of processes involved in prioritization, escalation, and management of security incidents
• Experience in implementing SIEM technology and advise on best practices

Preferred Technical and Professional Expertise
An understanding of security technologies such as: firewalls, intrusion detection, content filtering, anti-virus, mobile security, data loss prevention, bot-net detection, and other such technologies in the security industry.

· Consulting on security incident handling and management programs
· Experience in management of a security operation center
· Familiar in the setup or design of security operation centers
· Strong knowledge of all existing cloud platforms is required as in current security strategy we have a strong migration to cloud culture