Security Specialist

IBM • Raleigh, NC, US • 8h ago

Introduction

At IBM, work is more than a job - it's a calling: To build. To design. To code. To consult. To think along with clients and sell. To make markets. To invent. To collaborate. Not just to do something better, but to attempt things you've never thought possible. Are you ready to lead in this new era of technology and solve some of the world's most challenging problems? If so, lets talk.

Your Role and Responsibilities

IBM Technology Zone Operates a Global Hybrid Cloud Infrastructure Inclusive Of IBM Cloud, AWS, Azure, Power, Z, VMWare, And KVM. The Security Specialist Is To Work With The Security & Compliance Lead To Ensure Scalable Security Architectures Across These Platforms And Compliance Commitments Are Reflected In The Corresponding Roadmaps. Additionally, Compliance Risks And Audit Findings Are Completed Within The Planned Timeframes, And Identified Compliance Issues Are Properly Risk Assessed With An Action Plan To Close. The Security Specialist In Our Team Will Participate In Some Or All Of The Following

Review, document, and iterate on cloud security models to ensure scalable and secure access to our Hybrid Cloud infrastructure.
Collaborating with infrastructure architects and technical security teams to define and implement security processes and procedures based on industry-standard best practices and compliance requirements. Defining the requirements and validating the procedures and audit testing methodology
Conducting regularly reviews on compliance progression of systems and hosting internal and third-party audits as required in order to maintain certifications and compliance certificates.
Working with the Development teams to ensure automation of evidence collection and evidence management is in line with compliance expectations at all times, and when this is not the case, identifies specific actions and owners to meet the expectations.
Assisting team members in addressing highly complex security issues applicable to enterprise environment.
Mitigate CISR exceptions pursuant to established CIO policies.

Successful security Compliance leader will possess the following skills or knowledge:

Ability to leverage and extend existing security reference architecture to include detailed security models for IBM Cloud, AWS, Azure, & VMWare environments.
Ability to leverage and extend existing security reference architecture to include front-end and back-end components at the application level.
Experience working with application and cloud SMEs to document security models.
Experience with public cloud security models, i.e., access policies, resource groups, IAM, LDAP, etc.
Ability to utilize project management principles to properly scope compliance work efforts by service lines, identify common areas of work, and create a measurable milestone plans across service lines to enable completion of compliance work items on time.
Experience with compliance programs such as FFIEC or FedRAMP/ FISMA, GDPR, SOC 2, PCI, NIST, ISO, or ITAR.
Experience in risk assessment processes, service delivery operations, and software development.
Ability to understand enterprise business computing operations/requirements, and in particular, public cloud and communicate to service lines what is expected in order to consider a work item complete.
Ability to stand firm on issues yet be flexible and creative when working with stakeholders to find effective solutions.

Required Technical and Professional Expertise

Extensive experience in complex cross organization project management with emphasis on identifying and managing risk, setting measurable goals, identifying dependencies, defining critical paths and communicating with senior executives, auditors, and internal technical leads.
Experience working with data center and/or cloud infrastructure.
Experience with operations of data centers and cloud-based infrastructures, networking security including firewalls, intrusion detection, vulnerability scanning, and OS patching.
Executive communications, effective problem management, and working under timeline pressure.

Preferred Technical And Professional Expertise

Experience with DevOps concepts, tooling and software development.
Knowledge of ITSS or ISEC security policies.
Knowledge of IBM Security Tooling (e.g., AccessHub, IBM Inventory, MAD, Crowdstrike, Cognos Reporting).
Knowledge of Industry Security & Privacy Regulations (e.g., ISO, SOC2, HIPAA, PCI, FFIEC, GDPR).

About Business Unit

IBM has a global presence, operating in more than 175 countries with a broad-based geographic distribution of revenue. The company’s Global Markets organization is a strategic sales business unit that manages IBM’s global footprint, working closely with dedicated country-based operating units to serve clients locally. These country teams have client relationship managers who lead integrated teams of consultants, solution specialists and delivery professionals to enable clients’ growth and innovation. By complementing local expertise with global experience and digital capabilities, IBM builds deep and broad-based client relationships. This local management focus fosters speed in supporting clients, addressing new markets and making investments in emerging opportunities. Additionally, the Global Markets organization serves clients with expertise in their industry as well as through the products and services that IBM and partners supply. IBM is also expanding its reach to new and existing clients through digital marketplaces.

Your Life @ IBM

In a world where technology never stands still, we understand that, dedication to our clients success, innovation that matters, and trust and personal responsibility in all our relationships, lives in what we do as IBMers as we strive to be the catalyst that makes the world work better.

Being an IBMer means you’ll be able to learn and develop yourself and your career, you’ll be encouraged to be courageous and experiment everyday, all whilst having continuous trust and support in an environment where everyone can thrive whatever their personal or professional background.

Our IBMers are growth minded, always staying curious, open to feedback and learning new information and skills to constantly transform themselves and our company. They are trusted to provide on-going feedback to help other IBMers grow, as well as collaborate with colleagues keeping in mind a team focused approach to include different perspectives to drive exceptional outcomes for our customers. The courage our IBMers have to make critical decisions everyday is essential to IBM becoming the catalyst for progress, always embracing challenges with resources they have to hand, a can-do attitude and always striving for an outcome focused approach within everything that they do.

Are you ready to be an IBMer?

About IBM

IBM's greatest invention is the IBMer. We believe that through the application of intelligence, reason and science, we can improve business, society and the human condition, bringing the power of an open hybrid cloud and AI strategy to life for our clients and partners around the world.

Restlessly reinventing since 1911, we are not only one of the largest corporate organizations in the world, we’re also one of the biggest technology and consulting employers, with many of the Fortune 50 companies relying on the IBM Cloud to run their business.

At IBM, we pride ourselves on being an early adopter of artificial intelligence, quantum computing and blockchain. Now it’s time for you to join us on our journey to being a responsible technology innovator and a force for good in the world.

Location Statement

IBM offers a competitive and comprehensive benefits program. Eligible employees may have access to:

Healthcare benefits including medical & prescription drug coverage, dental, vision, and mental health & well being.
Financial programs such as 401(k), cash balance pension plan, the IBM Employee Stock Purchase Plan, financial counseling, life insurance, short & long- term disability coverage, and opportunities for performance based salary incentive programs.
Generous paid time off including 12 holidays, minimum 56 hours sick time, 120 hours vacation, 12 weeks parental bonding leave in accordance with IBM Policy, and other Paid Care Leave programs. IBM also offers paid family leave benefits to eligible employees where required by applicable law.
Training and educational resources on our personalized, AI-driven learning platform where IBMers can grow skills and obtain industry-recognized certifications to achieve their career goals.
Diverse and inclusive employee resource groups, giving & volunteer opportunities, and discounts on retail products, services & experiences

The compensation range and benefits for this position are based on a full-time schedule for a full calendar year. The salary will vary depending on your job-related skills, experience and location. Pay increment and frequency of pay will be in accordance with employment classification and applicable laws. For part time roles, your compensation and benefits will be adjusted to reflect your hours. Benefits may be pro-rated for those who start working during the calendar year.

This position was posted on the date cited in the key job details section and is anticipated to remain posted for 21 days from this date or less if not needed to fill the role.

We consider qualified applicants with criminal histories, consistent with applicable law.

IBM will not be providing visa sponsorship for this position now or in the future. Therefore, in order to be considered for this position, you must have the ability to work without a need for current or future visa sponsorship.

Being You @ IBM

IBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.

Apply