Logo of Huzzle

Security consultant

image

Kyndryl

14d ago

  • Job
    Full-time
    Junior, Mid & Senior Level
  • Consulting
    IT & Cybersecurity
  • Madrid
  • Quick Apply

AI generated summary

  • You need 2-5 years in infrastructure security, advanced SIEM skills, Python/Bash scripting, incident response experience, network architecture knowledge, and strong communication and leadership abilities.
  • You will assess security needs, implement measures, conduct audits, collaborate on security designs, and enhance defenses against evolving threats in customer environments.

Requirements

  • Experiencia de 2 a 5 años en el ámbito de la seguridad de infraestructuras.
  • Conocimientos avanzados de alguna solución SIEM (Qradar, Securonix, Splunk, Devo, ArcSight, Fortisiem, LogRythm).
  • Capacidad de hacer desarrollos internos en scripts (en Bash y Python principalmente) para mejorar la respuesta a incidentes.
  • Dominio de Sistemas Operativos tipo *nix.
  • Conocimientos de arquitecturas de red.
  • Experiencia en respuesta a incidentes de seguridad, las siguientes tareas: Diseño de playbooks.
  • Creación y modificación de alertas y casos de uso de seguridad.
  • Investigación de alertas de seguridad.
  • Ejecución directa de acciones en dispositivos de TI.
  • Definición de estrategias de remediación.
  • Actualización e integración de fuentes SIEM.
  • Orquestación y automatización de la respuesta a incidentes (SOAR).
  • Liderazgo y coordinación de incidentes de seguridad (ataques externos e internos, war-rooms, escalaciones, definición de planes de acción...).
  • Redacción de informes post-mortem.
  • Diseño de procedimientos y mejora continua.
  • Experiencia en usos de herramientas de activos y evaluación de seguridad (Shodan, Nmap, Qualys, Nessus, Accunetix, etc.).
  • Experiencia en el uso del marco de trabajo Mitre ATT&CK (se valorará Cyber Kill Chain y Diamond Model).
  • Experiencia de al menos 2 años en servicios SOC administrando alguna de estas tecnologías UEBA, EDR, XDR, escaneo vulnerabilidades...
  • Experiencia en administración de elementos de seguridad perimetral (FW, WAFS, IDS, IPS,...).
  • Conocimientos de plataformas the Threat Intelligence.
  • Conocimientos de Threat Hunting en laboratorios.
  • Experiencia en Sistemas Operativos tipo Windows.
  • Análisis de malware y ficheros sospechosos (DFIR).
  • Conocimientos de Ansible.
  • Proactividad.
  • Capacidad de Liderazgo.
  • Capacidad de coordinación de diferentes equipos en el ámbito de una incidencia.
  • Ser un buen comunicador, transmitir el mensaje apropiado a las personas clave de la organización.
  • Capacidad analítica.
  • Pensamiento lateral.

Responsibilities

  • Assess, analyze, and implement effective security measures in customer environments, leaving no stone unturned when it comes to safeguarding their most sensitive data.
  • Work closely with clients to understand their unique security requirements and assess their current security posture.
  • Provide expert guidance and recommendations on the best security practices, risk management strategies, and robust security policies that will fortify their defenses.
  • Design and implement security controls, policies, and procedures.
  • Work alongside cross-functional teams to deploy state-of-the-art technologies, including firewalls, intrusion detection/prevention systems, access controls, and encryption technologies, ensuring a comprehensive security framework.
  • Conduct thorough security assessments, leaving no stone unturned in identifying potential security breaches.
  • Ensure adherence to policies and procedures through meticulous security audits and reviews.
  • Drive enhancements to the organization's security posture through continuous immersion in the latest security threats, technologies, and best practices.
  • Lend expertise to the design and review of IT infrastructure, systems, and applications, ensuring they are secure by design from inception.
  • Collaborate with customers and vendors on security assessments, audits, and due diligence activities.
  • Shape secure collaborations and partnerships.

FAQs

What is the primary role of a Security Consultant at Kyndryl?

The primary role of a Security Consultant at Kyndryl is to protect organizations from both known and unknown threats by assessing, analyzing, and implementing effective security measures, ensuring confidentiality, integrity, and availability of sensitive data.

What kind of experience is required for this position?

Candidates should have 2 to 5 years of experience in infrastructure security and advanced knowledge of at least one SIEM solution, along with hands-on experience in incident response and security assessments.

What technical skills are necessary for the Security Consultant role?

Key technical skills include proficiency in SIEM solutions, scripting in Bash and Python, knowledge of *nix operating systems, understanding of network architectures, experience with security incident response, and familiarity with tools like Shodan, Nmap, and vulnerability assessment tools.

Is experience with cybersecurity frameworks important for this role?

Yes, familiarity with cybersecurity frameworks like Mitre ATT&CK, Cyber Kill Chain, and Diamond Model is important and will be valued in candidates.

What soft skills are essential for a Security Consultant at Kyndryl?

Essential soft skills include proactivity, leadership abilities, strong communication skills, analytical thinking, and lateral thinking.

Does Kyndryl provide opportunities for professional development?

Yes, Kyndryl invests heavily in employee learning, offering access to industry-leading certification programs and resources to support career growth.

Will I be collaborating with other teams in this role?

Yes, collaboration is a key aspect of the role, as Security Consultants work closely with clients, cross-functional teams, and vendors to ensure comprehensive security measures.

What does the work environment look like at Kyndryl?

The work environment at Kyndryl is dynamic and collaborative, focused on innovation, inclusivity, and continuous improvement in technology solutions.

Are there opportunities for involvement in community service or volunteering?

Yes, Kyndryl encourages employees to participate in community service and volunteering through a company-wide platform that offers various opportunities for support and engagement with non-profit organizations.

How does Kyndryl foster diversity and inclusion within the workplace?

Kyndryl fosters diversity and inclusion through its Inclusion Networks and by creating a culture that encourages employees from all backgrounds to bring their whole selves to work, thereby enhancing collaboration and innovation.

We design, build, manage and modernize the mission-critical technology systems that the world depends on every day.

Consulting
Industry
10,001+
Employees
2021
Founded Year

Mission & Purpose

We have the world’s best talent that design, run, and manage the most advanced and reliable technology infrastructure each day. Together, we think holistically about the health of these vital technology ecosystems. We are a focused, independent company that builds on our foundation of excellence by creating systems in new ways. Bringing in the right partners, investing in our business, and working side-by-side with our customers to unlock potential. We're raising the bar. Our experience speaks for itself: We have 90,000 highly skilled employees around the world serving 75 of the Fortune 100. But our purpose is what drives us: Advancing the vital systems that power human progress. Because when a digital ecosystem is healthy, it can more readily adapt and support continuous growth and that opens up a world of possibility for everyone. Together, we are the heart of progress.