Introduction
At IBM, work is more than a job - it's a calling: To build. To design. To code. To consult. To think along with clients and sell. To make markets. To invent. To collaborate. Not just to do something better, but to attempt things you've never thought possible. Are you ready to lead in this new era of technology and solve some of the world's most challenging problems? If so, lets talk.
Your Role and Responsibilities
As Security Analyst, you are responsible for security monitoring, detection and incident response to defend information, infrastructure and products.
Come join our team of IBM experts, who are leaders with vision, distinguished engineers and IT architects who have worked with thousands of clients to transform enterprise IT, migrate to cloud, apply automation and ensure business continuity. We help client run their IT better, accelerate innovation and deliver unmatched performance with the power automation.
Want more jobs like this?
Get jobs in Markham, Canada delivered to your inbox every week.
If you thrive in a dynamic, reciprocal workplace, IBM provides an environment to explore new opportunities every single day. And if you relish the freedom to bring creative, thoughtful solutions to the table, there's no limit to what you can accomplish here.
Responsibilities:
- Provide security monitoring and incident response services supporting the mission to protect data, products and infrastructure
- Operate security monitoring and incident response tools with a focus on continuous improvement
- Research and recommend solutions for incident response and digital forensics.
- Experience with log analysis, event correlation, incident management procedures and systems
- Proactive detection and remediation of new exploits
- Experience with threat Hunting
- You'll have access to all the technical and management training courses you need to become the expert you want to be
- You'll learn directly from expert developers in the field; our team leads love to mentor
- You have the opportunity to work in many different areas to figure out what really excites you
Required Technical and Professional Expertise
Incident Response:
- Experience with secure coding practices and testing to prevent and avoid attacks, such as, http state handling, XSS, OWASP Top 10, ZAP, etc.
- Investigate security incidents, including malware infections, phishing attacks, and unauthorized access attempts.
- Conduct root cause analysis and provide recommendations to mitigate future incidents.
- Coordinate with other security teams to contain and remediate security incidents.
- Assist in post-incident reporting and documentation to provide insights for future threat mitigation strategies.
- Perform proactive threat hunting activities using various security tools and data sources.
- Analyze security alerts, logs, and network traffic to identify potential threats and vulnerabilities.
- Research and implement new threat hunting techniques and methodologies.
- Develop and maintain scripts using Python to automate routine security tasks, such as log analysis, alert enrichment, and threat intelligence integration.
- Create custom security tools and utilities to assist in threat detection and incident response efforts.
- Optimize existing Python scripts for better performance and efficiency in security operations.
Preferred Technical and Professional Expertise
NA