IBM Global Security - Penetration Testing Consultant - X-Force Red in Charlotte, North Carolina

Job Description

The Global Security Consultant will be part of X-Force Red Offensive Security, IBM’s elite security testing team. The primary duty is performing penetration tests against clients’ application and network assets. Engagements typically range from two to four weeks. Secondary duties include assisting in the sales process with potential or existing clients, and acting as a client’s primary technical contact for projects delivered by other consultants. It is critical that the consultant be able to rapidly learn new technologies and processes with minimal assistance. There is a potential for 25% travel, including international travel. Travel depends on project requirements.

Core Consulting:

  • Effective communication and presentation skills

  • The ability to lead large groups and be a primary facilitator

  • Demonstrated written skills

  • Comfortable working in a project based / client serving model

  • Ability to lead and shape client expectations

  • Help drive pursuits and engage in complex deals, matching outcomes to expectations

  • Ability to work easily with diverse and dynamic teams

  • Ability to work in a matrix management model

  • Preference for candidates with Secondary language skills

Required Technical and Professional Expertise

  • 5+ years of penetration testing experience

  • 5+ years of consulting experience

  • 5+ years of system administration, network administration, or programming experience

  • Ability to perform penetration tests against web applications plus at least one of the following: internal networks, wireless networks, mobile applications, thick-client applications, embedded applications, hardware

  • Strong understanding of networks, firewalls, protocols, routing, and security technologies

  • History of presenting at regional or major security conferences

  • History of published research, blog posts, or other publications

  • Effective English writing skills

  • Experience coordinating security testing projects with multiple consultants

Preferred Tech and Prof Experience

  • 2+ years experience managing one or more of the following: Firewalls, IDS/IPS, Security Incident and Event Management (SIEM)

  • Programming experience in one or more of the following: Java, .Net, Python, or Ruby

  • CISSP, OSCP, or other technical certifications

  • Experience in reverse engineering software or hardware

  • Conversational fluency in a second language

  • Hands-on experience in security aspects of compliance standards (ISO 27001, SSAE 16, COBIT, PCI, SOX, HIPPA, GLBA, etc.)

  • Experience editing documents for grammar, clarity, and technical accuracy

EO Statement

IBM is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.