Identity Threat Detection & Response (ITDR) Analyst
IBM
Identity Threat Detection & Response (ITDR) Analyst
Job Description
Identity Threat Detection & Response (ITDR) Analyst
📋 Job Overview
The ITDR Security Analyst will support daily operational monitoring and incident handling for the ITDR platform, ensuring system readiness across Active Directory environments. Key duties include validating detections, executing tuning instructions, and monitoring platform health and integrations.
📍 Location: Taguig City, PH (Remote/Hybrid)
💼 Career Level: Entry Level
🎯 Key Responsibilities
- Perform daily operational checks of ITDR collectors/connectors, domain connectivity, and platform health indicators
- Monitor alert queues, validate detection accuracy, and escalate credible threats to SOC
- Assist in incident enrichment using ITDR data and alert metadata for SOC use case alignment
- Execute tuning configurations as guided by the Consultant
- Help track false positive trends and document recommendations for future tuning
- Document all configurations and integrations thoroughly for future reference and maintenance
- Monitor platform integrations with other security platforms
- Raise technical issues to the Consultant after performing basic checks and log reviews
- Generate weekly reports on alert volumes, false positives, system health, and notable anomalies
- Maintain internal runbooks, procedures, and troubleshooting checklists for operations team reference
✅ Required Qualifications
- 1–3 years of experience in security operations or IT systems support with exposure to Active Directory environments
- Working knowledge of Active Directory structure, policies, and authentication processes
- Familiarity with identity-based threats, common AD attack vectors, and indicators of compromise
- Basic understanding of SIEM tools, security alert triage, and log/event analysis
- Ability to follow SOPs, perform health checks, and track operational tasks in a structured way
⭐ Preferred Qualifications
- Exposure to ITDR solutions (e.g., Semperis, SentinelOne Singularity Identity Posture Management, or similar platforms)
- Microsoft Certified: Identity and Access Administrator Associate (or equivalent AD-focused certification)
- Microsoft Certified: Security Operations Analyst Associate
- Any foundational training or certification in Active Directory administration or security
- Any entry-level SOC analyst, ITDR, or cloud security certification
🛠️ Required Skills
- Active Directory
- SIEM tools
- Security alert triage
- Log/event analysis
- SOPs
- ITDR solutions
- Semperis
- SentinelOne Singularity Identity Posture Management
- Analytical mindset
- Attention to detail
- Problem-solving
- Effective communication
- Coordination
- Escalation
🎁 Benefits & Perks
- Opportunity to learn and develop career
- Encouragement to be courageous and experiment
- Continuous trust and support in an inclusive environment
- Growth-minded culture with focus on feedback and learning
- Collaboration with colleagues for exceptional customer outcomes
- Equal-opportunity employment
- Commitment to fair employment practices
Locations
- Taguig City, PH, India (Remote)
Salary
Estimated Salary Rangemedium confidence
600,000 - 1,200,000 INR / yearly
Source: ai estimated
* This is an estimated range based on market data and may vary based on experience and qualifications.
Skills Required
- Active Directoryintermediate
- SIEM toolsintermediate
- Security alert triageintermediate
- Log/event analysisintermediate
- SOPsintermediate
- ITDR solutionsintermediate
- Semperisintermediate
- SentinelOne Singularity Identity Posture Managementintermediate
- Analytical mindsetintermediate
- Attention to detailintermediate
- Problem-solvingintermediate
- Effective communicationintermediate
- Coordinationintermediate
- Escalationintermediate
Required Qualifications
- 1–3 years of experience in security operations or IT systems support with exposure to Active Directory environments (experience)
- Working knowledge of Active Directory structure, policies, and authentication processes (experience)
- Familiarity with identity-based threats, common AD attack vectors, and indicators of compromise (experience)
- Basic understanding of SIEM tools, security alert triage, and log/event analysis (experience)
- Ability to follow SOPs, perform health checks, and track operational tasks in a structured way (experience)
Preferred Qualifications
- Exposure to ITDR solutions (e.g., Semperis, SentinelOne Singularity Identity Posture Management, or similar platforms) (experience)
- Microsoft Certified: Identity and Access Administrator Associate (or equivalent AD-focused certification) (experience)
- Microsoft Certified: Security Operations Analyst Associate (experience)
- Any foundational training or certification in Active Directory administration or security (experience)
- Any entry-level SOC analyst, ITDR, or cloud security certification (experience)
Responsibilities
- Perform daily operational checks of ITDR collectors/connectors, domain connectivity, and platform health indicators
- Monitor alert queues, validate detection accuracy, and escalate credible threats to SOC
- Assist in incident enrichment using ITDR data and alert metadata for SOC use case alignment
- Execute tuning configurations as guided by the Consultant
- Help track false positive trends and document recommendations for future tuning
- Document all configurations and integrations thoroughly for future reference and maintenance
- Monitor platform integrations with other security platforms
- Raise technical issues to the Consultant after performing basic checks and log reviews
- Generate weekly reports on alert volumes, false positives, system health, and notable anomalies
- Maintain internal runbooks, procedures, and troubleshooting checklists for operations team reference
Benefits
- general: Opportunity to learn and develop career
- general: Encouragement to be courageous and experiment
- general: Continuous trust and support in an inclusive environment
- general: Growth-minded culture with focus on feedback and learning
- general: Collaboration with colleagues for exceptional customer outcomes
- general: Equal-opportunity employment
- general: Commitment to fair employment practices
Tags & Categories
Answer 10 quick questions to check your fit for Identity Threat Detection & Response (ITDR) Analyst @ IBM.
10 Questions
~2 Minutes
Instant Score
Related Books and Jobs
Identity Threat Detection & Response (ITDR) Analyst
IBM
Identity Threat Detection & Response (ITDR) Analyst
Job Description
Identity Threat Detection & Response (ITDR) Analyst
📋 Job Overview
The ITDR Security Analyst will support daily operational monitoring and incident handling for the ITDR platform, ensuring system readiness across Active Directory environments. Key duties include validating detections, executing tuning instructions, and monitoring platform health and integrations.
📍 Location: Taguig City, PH (Remote/Hybrid)
💼 Career Level: Entry Level
🎯 Key Responsibilities
- Perform daily operational checks of ITDR collectors/connectors, domain connectivity, and platform health indicators
- Monitor alert queues, validate detection accuracy, and escalate credible threats to SOC
- Assist in incident enrichment using ITDR data and alert metadata for SOC use case alignment
- Execute tuning configurations as guided by the Consultant
- Help track false positive trends and document recommendations for future tuning
- Document all configurations and integrations thoroughly for future reference and maintenance
- Monitor platform integrations with other security platforms
- Raise technical issues to the Consultant after performing basic checks and log reviews
- Generate weekly reports on alert volumes, false positives, system health, and notable anomalies
- Maintain internal runbooks, procedures, and troubleshooting checklists for operations team reference
✅ Required Qualifications
- 1–3 years of experience in security operations or IT systems support with exposure to Active Directory environments
- Working knowledge of Active Directory structure, policies, and authentication processes
- Familiarity with identity-based threats, common AD attack vectors, and indicators of compromise
- Basic understanding of SIEM tools, security alert triage, and log/event analysis
- Ability to follow SOPs, perform health checks, and track operational tasks in a structured way
⭐ Preferred Qualifications
- Exposure to ITDR solutions (e.g., Semperis, SentinelOne Singularity Identity Posture Management, or similar platforms)
- Microsoft Certified: Identity and Access Administrator Associate (or equivalent AD-focused certification)
- Microsoft Certified: Security Operations Analyst Associate
- Any foundational training or certification in Active Directory administration or security
- Any entry-level SOC analyst, ITDR, or cloud security certification
🛠️ Required Skills
- Active Directory
- SIEM tools
- Security alert triage
- Log/event analysis
- SOPs
- ITDR solutions
- Semperis
- SentinelOne Singularity Identity Posture Management
- Analytical mindset
- Attention to detail
- Problem-solving
- Effective communication
- Coordination
- Escalation
🎁 Benefits & Perks
- Opportunity to learn and develop career
- Encouragement to be courageous and experiment
- Continuous trust and support in an inclusive environment
- Growth-minded culture with focus on feedback and learning
- Collaboration with colleagues for exceptional customer outcomes
- Equal-opportunity employment
- Commitment to fair employment practices
Locations
- Taguig City, PH, India (Remote)
Salary
Estimated Salary Rangemedium confidence
600,000 - 1,200,000 INR / yearly
Source: ai estimated
* This is an estimated range based on market data and may vary based on experience and qualifications.
Skills Required
- Active Directoryintermediate
- SIEM toolsintermediate
- Security alert triageintermediate
- Log/event analysisintermediate
- SOPsintermediate
- ITDR solutionsintermediate
- Semperisintermediate
- SentinelOne Singularity Identity Posture Managementintermediate
- Analytical mindsetintermediate
- Attention to detailintermediate
- Problem-solvingintermediate
- Effective communicationintermediate
- Coordinationintermediate
- Escalationintermediate
Required Qualifications
- 1–3 years of experience in security operations or IT systems support with exposure to Active Directory environments (experience)
- Working knowledge of Active Directory structure, policies, and authentication processes (experience)
- Familiarity with identity-based threats, common AD attack vectors, and indicators of compromise (experience)
- Basic understanding of SIEM tools, security alert triage, and log/event analysis (experience)
- Ability to follow SOPs, perform health checks, and track operational tasks in a structured way (experience)
Preferred Qualifications
- Exposure to ITDR solutions (e.g., Semperis, SentinelOne Singularity Identity Posture Management, or similar platforms) (experience)
- Microsoft Certified: Identity and Access Administrator Associate (or equivalent AD-focused certification) (experience)
- Microsoft Certified: Security Operations Analyst Associate (experience)
- Any foundational training or certification in Active Directory administration or security (experience)
- Any entry-level SOC analyst, ITDR, or cloud security certification (experience)
Responsibilities
- Perform daily operational checks of ITDR collectors/connectors, domain connectivity, and platform health indicators
- Monitor alert queues, validate detection accuracy, and escalate credible threats to SOC
- Assist in incident enrichment using ITDR data and alert metadata for SOC use case alignment
- Execute tuning configurations as guided by the Consultant
- Help track false positive trends and document recommendations for future tuning
- Document all configurations and integrations thoroughly for future reference and maintenance
- Monitor platform integrations with other security platforms
- Raise technical issues to the Consultant after performing basic checks and log reviews
- Generate weekly reports on alert volumes, false positives, system health, and notable anomalies
- Maintain internal runbooks, procedures, and troubleshooting checklists for operations team reference
Benefits
- general: Opportunity to learn and develop career
- general: Encouragement to be courageous and experiment
- general: Continuous trust and support in an inclusive environment
- general: Growth-minded culture with focus on feedback and learning
- general: Collaboration with colleagues for exceptional customer outcomes
- general: Equal-opportunity employment
- general: Commitment to fair employment practices
Tags & Categories
Answer 10 quick questions to check your fit for Identity Threat Detection & Response (ITDR) Analyst @ IBM.
10 Questions
~2 Minutes
Instant Score
Related Books and Jobs