15 days old

XFTM Blue Squad Leader

London, England EC1A 4
  • Job Code

Information and Data are some of the most important organizational assets in todays businesses. As a Security Consultant, you will be a key advisor for IBMs clients, analyzing business requirements to design and implement the best security solutions for their needs. You will apply your technical skills to find the balance between enabling and securing the client's organization with the cognitive solutions that are making IBM the fastest growing enterprise security business in the world.

Your Role and Responsibilities
Role Summary
Cybersecurity is one of the most critical issues of our generation. No other company has the powerful combination of diverse talent, industry-leading security technology and services, global reach and cognitive capabilities, powered by Watson, to combat cybersecurity threats.

X-Force Threat Management (XFTM) is our leading, global, integrated service built upon the 5 functions of the NIST Cybersecurity framework. Our service helps our clients to identify and protect critical assets, detect advanced threats, and respond and recover from disruptions faster than ever before. Our IBM X-Force Protection Platform uses advanced technology like Watson for Cybersecurity and IBM Resilient to automate and orchestrate key tasks to accelerate the response to attacks.

XFTM Blue Squads act as a highly specialized extension of the clients security apparatus to optimize the end-to-end Threat Detection, Investigation, and Response capabilities of the service and achieve the clients security program objectives.

IBM is looking for an experienced professional to deliver customized Blue Squad leadership in support to a UK-based XFTM client. The Blue Squad Leader will provide cross-discipline, cross-platform, technical leadership of the team performing the full spectrum of XFTM operations, from SIEM management and monitoring to incident response.

Key Skills
  • Provide day-to-day technical leadership of IBM operational security activities including, but not limited to: technical reporting production, platform optimization, technical oversight of critical feedback loops, synchronization of cross-service output, high severity incident support, and security best practices implementation.
  • Align client and IBM operational activities with the established security program maturity roadmap established in collaboration with IBM security consulting services.
  • Establish and maintain an intimate situational awareness of the client's security organization, program objectives, decision-making, posture, and threat landscape to guide IBM operational activities.
  • Enhance IBM support to high severity incidents by leading cross-functional communications and information-sharing, advising the client in accordance with incident response best practices, conducting post-incident lessons learned workshops in partnership with the client, developing action plans to implement these lessons learned, and producing and briefing incident reports summarizing events, findings, and outcomes.
  • Provide technical leadership and oversight of cross-functional IBM and client use case development activities, including but not limited to: requirements scoping to include gap analysis, process guidance, synchronization of actions, coverage mapping, and security best practice implementation.
  • Support incident forensics investigation and recovery activities.
  • Capture IBM SME training gaps, communicate to functional management, and monitor resolution.
  • Provide technical oversight of cross-functional IBM escalations to the client and ensure the implementation of associated feedback to optimize the overall service.
  • Capture technical platform requirements, communicate to IBM product owners, and monitor resolution.
  • Capture technical solution and support requirements exceptional to the contracted services, communicate to IBM SMEs, and monitor resolution.
  • Produce and brief periodic technical service reviews that assess standard XFTM as well as client-tailored technical KPIs and metrics, track status and service recommendations and actions and their impact to technical KPIs and metrics, identify security risks and opportunities, and recommend actions to advance the overall service and client's posture in accordance with the security program maturity roadmap established by IBM security consulting services.
  • Partner with the client to expand technical reporting requirements beyond standard XFTM metrics with custom KPIs and metrics that are tailored to the client's security program objectives and priorities.
  • Leverage and synchronize the output of individual IBM functions to optimize the overall service (develop action plans to optimize the service and client's posture based on security testing results, etc.).

Desirable Experience
  • Security Operations Centre Management
  • Managed Security Service Providers
  • Leadership and communications to executive management
  • SIEM technology
  • SOC Analysis
  • Incident Response,
  • Experience of Handle Time, Cycle Time, Quality, Time to response, mitigation and recovery.
  • Threat Hunting

Required Competencies

Required Technical and Professional Expertise

Experience in management consulting and systems integration or Managed Security Services in a top tier professional services firm with knowledge of SIEM technologies, ticketing and workflow orchestration, Threat-Intelligence Platforms and active defence.
Experience working in projects in one of these core domains: SOC governance, organization design, operations management, incident investigation and response process and procedures.
Experience in management consulting and systems integration or Managed Security Services in a top tier professional services firm.

Preferred Technical and Professional Expertise
Experience working in projects related to the core domain
Experience working across diverse teams to facilitate solutions
Experience working with Security practitioners
Strong Consulting proven track record
Strong Systems Integration proven track record
Strong Delivery proven track record
Strong Pre-sales proven track record

About Business Unit
IBM is a leading provider of enterprise security solutions. Named by industry analysts as a leader in 12 security market segment categories, IBM Security is a multi-billion dollar business that is rapidly growing. In an industry focused on building walls, IBM Security is focused on creating an open, connected security ecosystem that leverages AI and cloud to help clients improve compliance, stop threats, and grow their business securely. Join our global team of IBM Security employees in protecting the world, and helping our clients thrive in the face of cyber uncertainty.

Your Life @ IBM
hat matters to you when youre looking for your next career challenge?

Maybe you want to get involved in work that really changes the world. What about somewhere with incredible and diverse career and development opportunities where you can truly discover your passion? Are you looking for a culture of openness, collaboration and trust where everyone has a voice? What about all of these? If so, then IBM could be your next career challenge. Join us, not to do something better, but to attempt things you never thought possible.

Impact. Inclusion. Infinite Experiences. Do your best work ever.

About IBM
BMs greatest invention is the IBMer. We believe that progress is made through progressive thinking, progressive leadership, progressive policy and progressive action. IBMers believe that the application of intelligence, reason and science can improve business, society and the human condition. Restlessly reinventing since 1911, we are the largest technology and consulting employer in the world, with more than 380,000 IBMers serving clients in 170 countries.

Location Statement
For additional information about location requirements, please discuss with the recruiter following submission of your application.

Being You @ IBM
IBM is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.



  • Computers Software and Hardware
Posted: 2019-10-06 Expires: 2019-11-05

Featured Jobs

Career News

Before you go...

Our free job seeker tools include alerts for new jobs, saving your favorites, optimized job matching, and more! Just enter your email below.

Share this job:

XFTM Blue Squad Leader

London, England EC1A 4

Join us to start saving your Favorite Jobs!

Sign In Create Account
Powered ByCareerCast