Technical Consultant-Threat Detection Content & Administration

Actively Reviewing the Applications

IBM

India, Karnataka, Mysore Full-Time

Posted 2 weeks ago • Apply by June 8, 2026

Job Description

Introduction

A career in IBM Consulting is built on long-term client relationships and close collaboration worldwide. You’ll work with leading companies across industries, helping them shape their hybrid cloud and AI journeys. With support from our strategic partners, robust IBM technology, and Red Hat, you’ll have the tools to drive meaningful change and accelerate client impact. At IBM Consulting, curiosity fuels success. You’ll be encouraged to challenge the norm, explore new ideas, and create innovative solutions that deliver real results. Our culture of growth and empathy focuses on your long-term career development while valuing your unique skills and experiences.

Your Role And Responsibilities

As a Technical Consultant in Threat Detection Content & Administration, you will manage and maintain security technology infrastructure, including SIEM, SOAR, EDR, AV, and Cloud security controls. You will develop and deploy use cases, rules, and security policy recommendations to ensure efficient infrastructure functionality. Your primary responsibilities will include:

Develop Use Cases and Rules: Create and tune use cases, rules, and optimization reports to identify malicious activity, and deploy them to the client environment. This involves analyzing system and network activity, indicators of compromise, and attacker tactics.
Maintain Infrastructure: Ensure that security infrastructures are patched, upgraded, and functioning efficiently, utilizing expertise in Security Incident & Event Management (SIEM), Endpoint Detection and Response technology, and network security technologies.
Apply Threat Frameworks: Utilize the MITRE ATT&CK framework to classify attacks, identify attack attribution, and assess risk, as well as the NIST Cybersecurity framework to evaluate the risk of threats.
Deliver Security Policy Recommendations: Provide security policy recommendations to clients based on expertise in security technologies and threat analysis.
Optimize Security Controls: Continuously monitor and optimize security controls to ensure efficient and effective threat detection and response.

Preferred Education

Master's Degree

Required Technical And Professional Expertise

Exposure to Security Technology Infrastructure: Experience with managing and maintaining security technology infrastructure, including SIEM, SOAR, EDR, AV, and Cloud security controls.
Threat Analysis and Mitigation: Experience with analyzing system and network activity, indicators of compromise, and attacker tactics to identify malicious activity.
Security Frameworks and Standards: Experience with applying the MITRE ATT&CK framework to classify attacks, identify attack attribution, and assess risk, as well as utilizing the NIST Cybersecurity framework to evaluate the risk of threats.
Security Technologies Expertise: Experience with Security Incident & Event Management (SIEM), Endpoint Detection and Response technology, anti-malware, anti-spam, and network security technologies.
Threat Detection and Response: Experience with developing and deploying use cases, rules, and security policy recommendations to ensure efficient infrastructure functionality and effective threat detection and response.

Preferred Technical And Professional Experience

Proficiency in Cloud Security: Experience with cloud security controls and technologies, including deployment and management of cloud-based security solutions.
Knowledge of Anti-Malware Tools: Exposure to anti-malware and anti-spam technologies, including their integration with SIEM and EDR systems.
Familiarity with Network Logging: Experience with general user and network activity logging policies, including log collection and analysis.