IBM Security Operations Center (SOC) Incident Response Manager in Research Triangle Park, North Carolina

Job Description

Cybersecurity is one of the most critical issues of our generation. No other company has the powerful combination of talent, industry-leading security technology, global reach and cognitive capabilities, powered by Watson to combat the cybersecurity threats.

Within IBM’s North America Security Service practice, we are constantly seeking security skills that can further enhance the depth and expertise needed by the marketplace.

We have many exciting opportunities in IBM’s Security Services business unit. We are looking for an experienced Security Operations Center (SOC) Incident Response Manager with readiness for 24/7 working time system.

Prefer candidates located in Boston, MA.

On this project you will be working as a member of the Integrated Security Tower and performing the following duties on behalf of IBM and our client:

  • Liaising with the Customer as focal point for all high priority & major incidents reported

  • Planning, coordinating, and controlling the restoration of simple, complex or high impact of system problems that occur within the production environment of client's systems

  • Handling conflict situations and making critical decisions while driving incidents

  • Developing strong working relationships with support teams and management

  • Providing support and participating in the Change Control Board and change control process

  • Providing appropriate inputs to the problem management process while supporting other team members including Service Restoration Managers and Problem Managers in processes and techniques used to manage major incidents

  • Provide oversight of the 24x7x365 SOC and Security Tools Engineering teams to support security monitoring, protection, and delivery of security services for IBM Security clients

  • Responsible for overall situational awareness, security posture, and overall dedicated onsite position with the client

Required Technical and Professional Expertise

  • At least 1 year of experience with Incident Management, Problem Management and Change Management processes

  • At least 5 years of experience in cybersecurity operations and maintenance environment

  • At least 5 years of experience in leadership and management of teams in cybersecurity or technical field

  • At least 5 years of experience in Security Event log monitoring

  • At least 5 years of experience in Network/System traffic/event analysis

  • At least 5 years of experience in Vulnerability Management

  • At least 5 years of experience in Security Tools

  • At least 5 years of experience in Intrusion Detection/Prevention Monitoring

  • Good understanding of production IT Environment and IT Operations such as Intel / DBA/ Unix / Windows OS/Exchange and Remote Server Management domains etc.

Preferred Tech and Prof Experience

  • Experience in Critical Situations Management

  • Knowledge of Conflict Management techniques

  • DoD 8570 Compliant certification such as Security+ or CISSP

  • ITIL certificate

EO Statement

IBM is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.