Security Consultant-EDR

Introduction
Information and Data are some of the most important organizational assets in today’s businesses. As a Security Consultant, you will be a key advisor for IBM’s clients, analyzing business requirements to design and implement the best security solutions for their needs. You will apply your technical skills to find the balance between enabling and securing the client’s organization with the cognitive solutions that are making IBM the fastest growing enterprise security business in the world.

Your Role and Responsibilities

We are looking for a skilled Cybersecurity Analyst with expertise in FireEye tools and solutions to join our security operations team. The ideal candidate will have hands-on experience with FireEye’s advanced security platforms, threat detection, and incident response systems. You will play a crucial role in identifying, investigating, and mitigating security threats and ensuring the overall protection of our organization’s critical systems.

Responsibilities

• Use FireEye platforms such as NX, HX, EX, and AX to detect and respond to advanced threats.
• Act as a first line of defence by responding to security incidents and performing root cause analysis using FireEye solutions.
• Ensure FireEye systems are correctly configured, updated, and integrated within the security ecosystem.
• Conduct vulnerability assessments and provide recommendations on mitigations for identified risks using FireEye threat intelligence feeds.
• Collaborate with the broader security team to enhance and enforce cybersecurity policies and procedures.
• Document security incidents, resolutions, and remedial actions for senior management and audit purposes.
• Regularly review threat intelligence and keep abreast of the latest security trends and technologies to recommend enhancements.
• Communicate with vendors and internal stakeholders to troubleshoot and optimize security tools and strategies.

Required Technical and Professional Expertise

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• 2+ years of experience in cybersecurity, with a focus on threat detection, incident response, or similar roles.
• Hands-on experience with FireEye products such as FireEye NX, HX, EX, AX, or a combination of these.
• Proficiency in analysing and interpreting system logs, SIEM data, and packet captures.
• Strong understanding of malware analysis, threat hunting, and network forensics.
• Industry certifications like CISSP, CEH, GCFA, or FireEye Certified (preferred but not required).
• Strong analytical skills and the ability to work under pressure in fast-paced environments.
• Excellent communication and teamwork skills.

Preferred Technical and Professional Expertise

• Experience with other security tools such as Splunk, Carbon Black, CrowdStrike, or Palo Alto.
• Knowledge of MITRE ATT&CK framework, Indicators of Compromise (IoCs), and Tactics, Techniques, and Procedures (TTPs).
• Familiarity with scripting languages like Python, PowerShell, or Bash for automating security tasks.