The Blue Squad Leader provides cross-disciplinary and cross-platform leadership of X-Force Threat Management operations to achieve the client's security objectives and optimal technical outcomes. The Blue Squad Leader serves as a highly specialized extension of the client's security apparatus to optimize the full spectrum of X-Force Threat Management capabilities: threat insight, prevention, detection, response, and recovery.
Your Role and Responsibilities
Establish and maintain an intimate situational awareness of the client's security organization, objectives, decision-making, posture, and threat landscape to guide X-Force Threat Management operations
Provide internal, technical leadership of X-Force Threat Management operations to optimize the overall service and SIEM environment, ensure the implementation of best practices and client feedback, and drive the resolution of risks and issues
Analyze X-Force Threat Management operational metrics and KPIs for risks, issues, and opportunities to recommend actions to advance the overall service and the client's security posture
Lead weekly reviews with the client to maintain operational alignment, facilitate service delivery, and close feedback loops
Analyze and brief X-Force Threat Management operational metrics and KPIs included in periodic reviews owned by the Security Services Account Manager
Internally align X-Force Threat Management operations with the client's security program maturity roadmap established in collaboration with consultants
Capture X-Force Threat Management operational training gaps, platform requirements, and solution and support requirements exceptional to the contracted service, communicate to the appropriate IBM owners, and champion resolution
Enhance X-Force Threat Management operational support to high severity Security Incidents by facilitating internal, operational communications and conducting post-recovery reviews to identify lessons learned. Develop and track action plans to address X-Force Threat Management lessons learned
Review X-Force Red penetration test reports to identify IBM lessons learned. Develop and track action plans to address X-Force Threat Management lessons learned
Required Technical and Professional Expertise
Technical leadership of personnel in the Cybersecurity field - few years
Direct experience working in a client-facing role interacting at multiple levels from security engineers and analysts to Managers, Directors and VPs - few years
Network/system traffic/event analysis - several years
Threat analysis experience - several years
Experience with SIEM platforms - several years
Active Security+, CySA+, or equivalent certification
Preferred Technical and Professional Expertise
Experience delivering IBM Managed Security Services
Experience in multiple technical roles within a SOC (Threat Monitoring Analyst, SIEM Administrator, Security Correlation Engineer, Escalation Engineer, Threat Intelligence Analyst, etc.)
Experience with tools such as SOAR (Resilient), Vulnerability Management (Qualys), AV/End Point (Trend Micro, McAfee ePO)
Experience with firewalls and intrusion prevention/detection systems, including the ability to demonstrate a mature understanding of networking best practices
Experience with security compliance related to FISMA, NIST, and related security and risk management regulations
Experience with Linux and Windows operating systems
About Business UnitIBM's Cloud and Cognitive software business is committed to bringing the power of IBM's Cloud and Watson/AI technologies to life for our clients and ecosystem partners around the world. IBM provides you with the most comprehensive and consistent approach to development, security and operations across hybrid environments-with complete software solutions for business and IT operations, development, data science, security, and management. Our experts and software capabilities help organizations develop applications once and deploy them anywhere, integrate security across the breadth of their IT estate, and automate operations with management visibility. With IBM, you also have access to new skills and methods, governance and management approaches, and a deep ecosystem of industry experts and partners.
Your Life @ IBMAre you craving to learn more? Prepared to solve some of the world's most unique challenges? And ready to shape the future for millions of people? If so, then it's time to join us, express your individuality, unleash your curiosity and discover new possibilities.
Every IBMer, and potential ones like yourself, has a voice, carves their own path, and uses their expertise to help co-create and add to our story. Together, we have the power to make meaningful change - to alter the fabric of our clients, of society and IBM itself, to create a truly positive impact and make the world work better for everyone.
It's time to define your career.
About IBMIBM's greatest invention is the IBMer. We believe that through the application of intelligence, reason and science, we can improve business, society and the human condition, bringing the power of an open hybrid cloud and AI strategy to life for our clients and partners around the world.Restlessly reinventing since 1911, we are not only one of the largest corporate organizations in the world, we're also one of the biggest technology and consulting employers, with many of the Fortune 50 companies relying on the IBM Cloud to run their business. At IBM, we pride ourselves on being an early adopter of artificial intelligence, quantum computing and blockchain. Now it's time for you to join us on our journey to being a responsible technology innovator and a force for good in the world.
Location StatementIBM wants you to bring your whole self to work and for you this might mean the ability to work flexibly. If you are interested in a flexible working pattern, please talk to our recruitment team to find out if this is possible in the current working environment.
Being You @ IBMIBM is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, pregnancy, disability, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.