Introduction
About The Team
The Security Operations Center has a global footprint within IBM and is responsible for monitoring 24x7 monitoring and incident response. As a part of this team, you will be working with other likeminded security professionals in order to secure and protect IBM employees, systems and environments (such as IBM Cloud) against emerging cybersecurity threats.
Your Role And Responsibilities
As an Entry‑Level
Cybersecurity Analyst, you’ll join IBM’s global Security Operations Center (SOC), a 24x7 team dedicated to detecting and responding to cybersecurity threats. You’ll help protect IBM employees, systems, and environments—including IBM Cloud—by monitoring security alerts, investigating suspicious activity, and supporting incident response efforts.
This role is ideal for motivated fast learners who are passionate about cybersecurity, eager to grow, and ready to work in a fast‑paced environment. You’ll collaborate with experienced analysts, learn industry‑standard tools, and build the foundational skills needed for a long‑term career in security operations.
Shifts may include daytime, evening, or overnight including weekend hours to support the SOC’s 24x7 mission.
Preferred Education
Bachelor's Degree
Required Technical And Professional Expertise
- 0–2 years of experience in information security or related IT fields
- Basic understanding of:
- Security operations, incident response, or threat analysis
- Cloud computing and network fundamentals
- Security frameworks such as NIST, MITRE ATT&CK, or FEDRAMP
- Familiarity with SIEM platforms and log analysis
- Exposure to EDR tools or endpoint investigations
- Strong written and verbal communication skills
- High integrity, professionalism, and ability to handle sensitive information
- Ability to work collaboratively in a team environment
- High School Diploma or GED
- Relevant entry‑level certifications (e.g., Security+, CYSA+, Google Cybersecurity)
Preferred Technical And Professional Experience
- Hands‑on experience in a SOC or IT security environment
- Strong understanding of networking or firewall concepts
- Experience with scripting or programming
- Familiarity with SIEM tools (e.g., QRadar)
- Experience with EDR platforms such as CrowdStrike, Microsoft Defender, or Carbon Black
- Exposure to cloud platforms (AWS, Azure, IBM Cloud)
- Knowledge of virtualization (VMware, Hyper‑V) or container technologies (Kubernetes)
- Interest in purple teaming or adversary simulation
- Basic Windows, Linux, or Mac system administration or forensics
- Bachelor’s degree in Cybersecurity, Computer Science, or related field
- Advanced certifications (e.g., GCIH, GCIA, GMON, OSCP, CASP, CISSP)
