**Introduction** In this role, you’ll work in one of our IBM Consulting Client Innovation Centers (Delivery Centers), where we deliver deep technical and industry expertise to a wide range of public and private sector clients the around world. Our delivery centers offer our clients locally based skills and technical expertise to drive innovation and adoption of new technology. A career in IBM Consulting embraces long-term relationships and close collaboration with clients across the globe. You’ll work with visionaries across multiple industries to improve the hybrid and AI journey for the most innovative and valuable companies in the world. Your ability to accelerate impact and make meaningful change for your clients is enabled by our strategic partner ecosystem and our robust technology platforms across the IBM portfolio; including IBM Software and Red Hat. Curiosity and a constant quest for knowledge serve as the foundation to success in IBM Consulting. In your role, you’ll be encouraged to challenge the norm, investigate ideas outside of your role, and come up with creative solutions resulting in ground breaking impact for a wide network of clients. Our culture of evolution and empathy centers on long-term career growth and development opportunities in an environment that embraces your unique skills and experience. **Your role and responsibilities** As an SOAR Subject Matter Expert (SME), you will be responsible for driving the adoption and optimization platform within customer organizations. Your expertise in security automation and incident response will be crucial in enhancing the client security posture and streamlining the client security operations. Role and Responsibilities: * Develop and customize playbooks within the SOAR platform to automate security tasks and incident response processes. * Design and implement automation solutions to streamline security workflows, reduce manual effort, and improve response times. * Participate in incident response activities, leveraging the SOAR to orchestrate and automate the investigation and remediation of security incidents. * Integrate SOAR with various security tools and platforms, such as SIEMs, EDRs, and threat intelligence platforms, to create a cohesive security ecosystem. * Provide customer support and consulting, assisting with XSOAR deployments, and offering guidance on best practices. * Collaborate closely with other security teams, such as incident responders, threat hunters, and security analysts, to ensure effective collaboration and communication. What we offer: * Individual career path * Access to countless trainings and certification offerings * A knowledge sharing culture * An environment where you are actively contributing your ideas * The possibility to work in projects in one of the largest IT companies This role offers an excellent opportunity for a skilled security professional to make a significant impact on our organization's security posture. If you are passionate about security automation and have the required skills and experience, we encourage you to apply. Switzerland **Required technical and professional expertise** * The candidate should have a strong understanding of SIEM solutions and their integration with XSOAR. * Significant experience in security operations, incident response, and security automation. * Hands-on experience with Cortex XSOAR, including playbook development, integration, and administration. * Excellent communication and collaboration skills to effectively interact with customers and internal teams. * Strong analytical and problem-solving skills to identify and resolve complex security issues. * Strong knowledge of Linux/Unix, Python scripting, security tools (SIEM, EDR, etc.), and network troubleshooting. * Swiss Residency is a must. * Fluent in English. Other languages is a strong asset. **Preferred technical and professional experience** * Experience with IBM QRadar is a plus: The candidate should be able to support and provide backfill for the QRadar team as needed. Working knowledge of Sentinel, Splunk, XSIEM is a strong plus. * Experience with Splunk Phantom, Sentinel Soar capabilities, ServiceNow Security Operations, LogRhythm SOAR and Security automation tool (Tines, Torq,..) is a plus. IBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.