Who We Are
Kyndryl is a market leader that thinks and acts like a start-up. We design, build, manage, and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward – always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers, and our communities.
The Role
•Assist in establishing Security Monitoring discipline to support enterprise
•Analyze and respond to security threats from Firewall (FW), Intrusion Detection Systems (IDS), Intrusion Prevention Systems (IPS), Antivirus (AV), Endpoint Detection and Response (EDR) and other security threat data sources.
•Respond in a timely manner (within documented SLA).
•Document actions in cases to effectively communicate information to internal stakeholders as well has for historical retrieval.
•Adhere to policies, procedures, and security practices
•Resolve problems independently and understand escalation procedures.
•Conduct Security Monitoring activities to provide Security in Depth visibility into potential known and unknown threats that may pose risk to the client’s environment.
•Participate in security incidents and act as the technical Subject Matter Expert during significant security incidents.
•Utilize analytics to identify potential threats to the environment.
•Detect, respond, mitigate, and report on cyber threats/incidents that may impact the environment.
•Collaborate with technical leads: Engineering, Operations, Service Desk, Applications and BISOs on matters related to security monitoring across global footprint.
•Collaborate and serve as liaison to Managed and/or Unmanaged Security Service providers.
•Conduct Operations surrounding cyber security incident response technologies including network logging and forensics, security information and event management tools, security analytics platforms, log search technologies, and host based forensics as applicable.
•Act as an internal information security consultant to the business and technology units, advising on risks, threats and control practices related to Rapid Response.
•Assist in development and knowledge sharing within the team.
•Assist in security console tuning
•Assist in security event oversight to ensure the team is delivering a quality product
•Identify and share threat intelligence that impacts kyndryl and their customers or products
•Perform threat hunts that target adversary TTPs
Who You Are
Requirements
•Degree of computer expert / information technology / information science
•4+ years security operations/engineering experience
•Active Defense
•Adversary Emulation – Purple Teaming
•Fluency English
•Availability to travel
•Advanced SIEM capabilities with use case deployment, query building, and metrics
•Analyze and respond to security threats from Firewall (FW), Intrusion
•Detection Systems (IDS), Intrusion Prevention Systems (IPS), Antivirus (AV),
•Endpoint Detection and Response (EDR) and other security threat data sources.
•Respond in a timely manner (within documented SLA).
•Document actions in cases to effectively communicate information to internal stakeholders as well has for historical retrieval.
•Adhere to policies, procedures, and security practices
•Resolve problems independently and understand escalation procedures.
•Conduct Security Monitoring activities to provide Security in Depth visibility into potential known and unknown threats that may pose risk to the kyndryl environment.
Skills/Esperiences
•Network security skills (Firewall rules, UTM, WAF, VMS, EDR, Sandbox solutions, NAC, IPS/IDS, Load Balancer, etc.), preferably on the following technologies: FortiNet, Cisco, Palo Alto, Carbon Black, Proofpoint, FireEye, F5, ForeScout, BlueCoat
•Secure Network Design, OS Hardening, Network Device Hardening, Patch Management
•Strong RED and BLUE security solution skills
•SIEM, SOAR, Ticketing Solutions
•Sound understanding of Industry Leading security Solutions
•Client facing experience supporting large scale security solutions.
•Experience using Linux-based systems
•Knowledge and understanding of Databases
•Experience with cloud security monitoring and response
•Experience monitoring containerized environments
•Scripting experience with Bash or Python
Being You
Diversity is a whole lot more than what we look like or where we come from, it’s how we think and who we are. We welcome people of all cultures, backgrounds, and experiences. But we’re not doing it single-handily: Our Kyndryl Inclusion Networks are only one of many ways we create a workplace where all Kyndryls can find and provide support and advice. This dedication to welcoming everyone into our company means that Kyndryl gives you – and everyone next to you – the ability to bring your whole self to work, individually and collectively, and support the activation of our equitable culture. That’s the Kyndryl Way.
What You Can Expect
With state-of-the-art resources and Fortune 100 clients, every day is an opportunity to innovate, build new capabilities, new relationships, new processes, and new value. Our employee learning hub gives you access to the best learning in the industry to receive certifications and accreditations, including Microsoft University, AWS Cloud Center of Excellence, Udemy, and the Harvard Business Review. Through our company-wide volunteering and giving platform, you can donate, start fundraisers, volunteer, and search over 2 million non-profit organizations. At Kyndryl, we invest heavily in you! We want you to succeed so that together, we will all succeed.
