Software Engineer - Security & Compliance

IntroductionSoftware Developers at IBM are the backbone of our strategic initiatives to design, code, test, and provide industry-leading solutions that make the world run today - planes and trains take off on time, bank transactions complete in the blink of an eye and the world remains safe because of the work our software developers do. Whether you are working on projects internally or for a client, software development is critical to the success of IBM and our clients worldwide. At IBM, you will use the latest software development tools, techniques and approaches and work with leading minds in the industry to build solutions you can be proud of.Your Role and ResponsibilitiesThis position is a security and compliance engineering role in X-Force Threat Intelligence. As a Security and Compliance Specialist, you will conduct security threat, vulnerability, and risk assessments of software systems running in the cloud. You will utilize your operational experience and knowledge of frameworks and standards such as GDPR and NIST to proactively ensure system compliance. You will utilize scanning and other tools to assess state and prioritize tasks. You will work with the CISO office to minimize business risk. Ideal candidates are detail oriented, possess strong technical skills, and communicate and collaborate effectively.Required Technical and Professional Expertise+ Relevant professional certifications a distinct advantage such as CISSP, ISSAP, CISA, CRISC, CISM, CGEIT.+ 5+ years' experience in Information Security with a particular focus on GRC, Security.+ Architecture, Threat Intelligence, Threat Modelling and Threat Assessments.+ Strong knowledge of Security Architecture and Zero Trust principles.+ Strong knowledge of conducting Security Threat, Vulnerability and Risk Assessments.+ Strong knowledge and application of Cloud Security, Architecture, Governance and Compliance controls and processes.+ Knowledge of the Mitre ATT@CK framework and protection strategies, advising on implementation of detection and prevention controls where possible.+ Knowledge of frameworks and standards such as NIST, CIS, PCI-DSS, ISO, PSD2.Preferred Technical and Professional Expertise+ Good knowledge of security best practices in the SDLC and experience of implementing controls for same.+ Knowledge of working with DevOps practices in the areas of Security Governance, Risk, Automation, Collaboration, Compliance) is advantageous.+ You will need to be an excellent collaborator and communicator within your team and with wider stakeholders.+ NoneAbout Business UnitIBM is a leading provider of enterprise security solutions. Named by industry analysts as a leader in 12 security market segment categories, IBM Security is a multi-billion dollar business that is rapidly growing. In an industry focused on building walls, IBM Security is focused on creating an open, connected security ecosystem that leverages AI and cloud to help clients improve compliance, stop threats, and grow their business securely.Your Life @ IBMWhat matters to you when you're looking for your next career challenge?Maybe you want to get involved in work that really changes the world? What about somewhere with incredible and diverse career and development opportunities - where you can truly discover your passion? Are you looking for a culture of openness, collaboration and trust - where everyone has a voice? What about all of these? If so, then IBM could be your next career challenge. Join us, not to do something better, but to attempt things you never thought possible.Impact. Inclusion. Infinite Experiences. Do your best work ever.About IBMIBM's greatest invention is the IBMer. We believe that progress is made through progressive thinking, progressive leadership, progressive policy and progressive action. IBMers believe that the application of intelligence, reason and science can improve business, society and the human condition. Restlessly reinventing since 1911, we are the largest technology and consulting employer in the world, with more than 380,000 IBMers serving clients in 170 countries.Location StatementFor additional information about location requirements, please discuss with the recruiter following submission of your application.IBM intends this job to be performed entirely outside of Colorado.Being You @ IBMIBM is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, pregnancy, disability, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.