#721169BR
ll assist in helping to ensure security vulnerabilities are implemented in a timely manner by responsible teams. Security vulnerabilities are one of many different controls within the Security/Compliance team. Security/Compliance's job is to ensure IBM Key Protect / Cloud Object Storage is operating in the most secure manner protecting IBM's assets from threats both internal and external. Automation is key in the world of managing Security and Compliance therefore a programming background is also desired as needed Areas. The engineer will be involved in Process Development and Orchestration, Integration with existing Business systems and technical platforms to operationalize security and compliance gaps, Exposure to IT Asset and Inventory Management, Network knowledge regarding ACL and VLAN configuration management, Enterprise Password Management solutions, Orchestrating solutions to address security control gaps.
How we'll help you grow:
You'll have access to all the technical and management training courses you need to become the expert you want to be.
You'll learn directly from Senior members/leaders in this field.
You'll have the opportunity to work with multiple clients.
Required Technical and Professional Expertise
• Experience with Linux Shell, Perl or Python
• Experience with compliance programs such as HIPAA, GDPR, SOC 2, PCI, NIST, ISO etc
• Experience in risk assessment processes, service delivery operations, and software development
• Ability to understand enterprise business computing operations/requirements, and in particular, Cloud and communicate to service lines what is expected in order to consider a work item complete
• Ability to stand firm on issues yet be flexible and creative when working with stakeholders to find effective solutions"
Preferred Technical and Professional Expertise
Required Education:
4 year University degree in Computer Sciences, Software Engineering or equivalent work experience.
• Experience with shell, Python
• Working in a change controlled production environment.
• Diagnosing the root cause of problems and propose solutions: Examples would be failed patches, tooling issues, false positives on system tests, authentication problems.
• Experience with operations of data centers or Cloud, and networking security including security systems such as firewalls, intrusion detection, vulnerability scanning, OS patching, health-checking
• Ability to manage multiple priority projects simultaneously