• Remediation Engineer

    IBM (Austin, TX)


    Introduction

    A career in IBM means you’ll be part of a team that transforms our customer’s challenges into solutions.

     

    Seeking new possibilities and always staying curious, we are a team dedicated to creating the world’s leading AI-powered, cloud-native software solutions for our customers. Our renowned legacy creates endless global opportunities for our IBMers, so the door is always open for those who want to grow their career.

     

    IBM’s product and technology landscape includes Research, Software, and Infrastructure. Entering this domain positions you at the heart of IBM, where growth and innovation thrive.

    Your role and responsibilities

    The CISO Remediation Team is looking for a Engineer, who can assist in responding to a myriad of security issues across a large enterprise and various lines of business. The right candidate must thrive in high-pressure situations, think like both an attacker and defender, and drive engineering, development and business teams to take the right actions in the right time frames to mitigate risks.

     

    We are looking for an individual who can balance technical risks against business risks and consistently drive for the right results. Must have passion for providing solutions to complex security challenges.

     

    The successful candidate will have a good mix of deep, technical knowledge, as well as a demonstrated background in Information Technology or Security.

     

    We value technical knowledge in any one of these fields: Cryptography, Networking, Infrastructure, Software Security, CI/CD Pipelines, Virtualization, Cloud-Native Technologies, Application Security, etc.

    Key duties:

    Strong leadership, project and team-building skills, including the ability to lead teams and drive projects and initiatives for multiple lines of business

     

    Advise, Design, implement enterprise-class security systems for production environments, both internal and external to IBM

     

    Align company standards, frameworks and security with overall business and technology strategy

     

    Identify and communicate current and emerging security threats

     

    Design security architecture elements to mitigate threats as they emerge

     

    Create solutions that balance business requirements with company information, IBM security requirements

     

    Identify security design gaps in existing and proposed architectures and recommend changes or enhancements

     

    Exceptional communication skills with diverse audiences - Strong critical thinking, analytical skills and empathy

    General skills include:

    Business Awareness: You have an understanding about the business that you're trying to secure. For example, working knowledge of cloud technologies, the ability to describe what the security concerns and impact might be for an organization looking to move from on-premises compute to public cloud

     

    Distributed Systems / Software Design: understand the compromises that teams make every day to make things work. Should have strong opinions about the right way to build

     

    Threats, Risks, and Modeling: know the difference between threats and risks. The ability to understand what organizations need to protect, who they need to protect it from, and how that protection should work

     

    Vulnerabilities and Exploitation: the ability to discern between a weakness, flaw, or error found within a system, software, host, etc that has the potential to be leveraged by an attacker in order to compromise a network, application, an infrastructure, etc.

     

    Collaboration: being personable, approachable, and empathetic are extremely valuable qualities for this position. The role requires a lot of cooperation and engagement within the organization and supported lines of business.

    Required technical and professional expertise

    * Experienced in Information Technology area, information Security, Developer, Software Engineer, Network Engineer

    * Preferably some experience with IBM Cloud, OpenStack, AWS, or similar proprietary cloud environments is a plus

    * Some experience with CI/CD and Development Pipelines is a plus

    * Some experience with Docker and Kubernetes a plus

    * Education requirements can vary

     

    Preferred technical and professional experience

    Possible certifications are:

    * Certified Information Systems Security Professional (CISSP)

    * CASP+,CCSP, CCSK

    * SANS-related certifications

    * Network related Certifications

     

    IBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.