Tech Jobs for Talents without Borders
English-1st. Relocation-friendly. Curated daily by Imagine.
5,417 Jobs at 188 Companies

IT Senior Security SOC Analyst

Kyndryl

Kyndryl

IT
Rome, Italy
Posted 6+ months ago

Who We Are

Kyndryl is a market leader that thinks and acts like a start-up. We design, build, manage, and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward – always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers, and our communities.


The Role

Assist in establishing Security Monitoring discipline to support enterprise
Analyze and respond to security threats from Firewall (FW), Intrusion Detection Systems (IDS), Intrusion Prevention Systems (IPS), Antivirus (AV), Endpoint Detection and Response (EDR) and other security threat data sources.
Respond in a timely manner (within documented SLA).
Document actions in cases to effectively communicate information to internal stakeholders as well has for historical retrieval.
Adhere to policies, procedures, and security practices
Resolve problems independently and understand escalation procedures.
Conduct Security Monitoring activities to provide Security in Depth visibility into potential known and unknown threats that may pose risk to the client’s environment.
Participate in security incidents and act as the technical Subject Matter Expert during significant security incidents.
Utilize analytics to identify potential threats to the environment.
Detect, respond, mitigate, and report on cyber threats/incidents that may impact the environment.
Collaborate with technical leads: Engineering, Operations, Service Desk, Applications and BISOs on matters related to security monitoring across global footprint.
Collaborate and serve as liaison to Managed and/or Unmanaged Security Service providers.
Conduct Operations surrounding cyber security incident response technologies including network logging and forensics, security information and event management tools, security analytics platforms, log search technologies, and host based forensics as applicable.
Act as an internal information security consultant to the business and technology units, advising on risks, threats and control practices related to Rapid Response.
Assist in development and knowledge sharing within the team.
Assist in security console tuning
Assist in security event oversight to ensure the team is delivering a quality product
Identify and share threat intelligence that impacts kyndryl and their customers or products
Perform threat hunts that target adversary TTPs


Who You Are

Requirements

Degree of computer expert / information technology / information science
4+ years security operations/engineering experience
Active Defense
Adversary Emulation – Purple Teaming
Fluency English
Availability to travel
Advanced SIEM capabilities with use case deployment, query building, and metrics
Analyze and respond to security threats from Firewall (FW), Intrusion
Detection Systems (IDS), Intrusion Prevention Systems (IPS), Antivirus (AV),
Endpoint Detection and Response (EDR) and other security threat data sources.
Respond in a timely manner (within documented SLA).
Document actions in cases to effectively communicate information to internal stakeholders as well has for historical retrieval.
Adhere to policies, procedures, and security practices
Resolve problems independently and understand escalation procedures.
Conduct Security Monitoring activities to provide Security in Depth visibility into potential known and unknown threats that may pose risk to the kyndryl environment.

Skills/Esperiences

Network security skills (Firewall rules, UTM, WAF, VMS, EDR, Sandbox solutions, NAC, IPS/IDS, Load Balancer, etc.), preferably on the following technologies: FortiNet, Cisco, Palo Alto, Carbon Black, Proofpoint, FireEye, F5, ForeScout, BlueCoat
Secure Network Design, OS Hardening, Network Device Hardening, Patch Management
Strong RED and BLUE security solution skills
SIEM, SOAR, Ticketing Solutions
Sound understanding of Industry Leading security Solutions
Client facing experience supporting large scale security solutions.
Experience using Linux-based systems
Knowledge and understanding of Databases
Experience with cloud security monitoring and response
Experience monitoring containerized environments
Scripting experience with Bash or Python


Being You

Diversity is a whole lot more than what we look like or where we come from, it’s how we think and who we are. We welcome people of all cultures, backgrounds, and experiences. But we’re not doing it single-handily: Our Kyndryl Inclusion Networks are only one of many ways we create a workplace where all Kyndryls can find and provide support and advice. This dedication to welcoming everyone into our company means that Kyndryl gives you – and everyone next to you – the ability to bring your whole self to work, individually and collectively, and support the activation of our equitable culture. That’s the Kyndryl Way.


What You Can Expect

With state-of-the-art resources and Fortune 100 clients, every day is an opportunity to innovate, build new capabilities, new relationships, new processes, and new value. Our employee learning hub gives you access to the best learning in the industry to receive certifications and accreditations, including Microsoft University, AWS Cloud Center of Excellence, Udemy, and the Harvard Business Review. Through our company-wide volunteering and giving platform, you can donate, start fundraisers, volunteer, and search over 2 million non-profit organizations. At Kyndryl, we invest heavily in you! We want you to succeed so that together, we will all succeed.