- Optionales Büro in Mumbai
Introduction
A career in IBM Consulting is built on long-term client relationships and close collaboration worldwide. You’ll work with leading companies across industries, helping them shape their hybrid cloud and AI journeys. With support from our strategic partners, robust IBM technology, and Red Hat, you’ll have the tools to drive meaningful change and accelerate client impact. At IBM Consulting, curiosity fuels success. You’ll be encouraged to challenge the norm, explore new ideas, and create innovative solutions that deliver real results. Our culture of growth and empathy focuses on your long-term career development while valuing your unique skills and experiences.
Your role and responsibilities
· Administer, configure, and maintain VMware Carbon Black App Control across enterprise endpoints and servers.
· Manage policies, rules, and reputation sources to control execution of applications and scripts.
· Monitor and respond to alerts related to malicious, unauthorized, or unapproved software executions.
· Perform daily health checks, license validation, and ensure endpoint connectivity compliance.
· Analyze App Control alerts and events to identify true positives and false positives.
· Collaborate with the Incident Response (IR) and SOC teams to investigate and contain threats.
· Provide RCA (Root Cause Analysis) and implement corrective actions to strengthen security posture.
· Develop and maintain application whitelisting policies for production, testing, and high-risk systems.
· Implement and fine-tune reputation-based rules (trusted, approved, unapproved, or banned files).
· Manage agent upgrades, server patches, and platform version upgrades in coordination with infrastructure teams.
· Generate compliance and activity reports for endpoint coverage, policy deviation, and security incidents.
· Document operational procedures, configuration baselines, and exception approvals.
· Support internal and external audits by providing relevant evidence and compliance details.
· Evaluate new Carbon Black features and integrations (e.g., SIEM, SOAR, Cortex XDR).
· Participate in Purple Team or CSI (Continuous Service Improvement) initiatives to enhance detection capabilities.
Required technical and professional expertise
· Strong understanding of application whitelisting, endpoint security, and file reputation mechanisms.
Ready to work in 24*7 shift
IBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.
Jetzt bewerben
