דרושים Security Compliance Focal ב-Ibm ב-India, Bengaluru

You will work across our global teams and diverse stakeholders- security focals, executive program and delivery managers, regulatory and compliance certifications experts, product management, IT, and business teams to monitor, drive plans and deliver key security compliance metrics, analyze audit data, identify gaps, and contribute to the continuous improvement of IBM cloud security and compliance posture. Additionally, you will leverage your analytical skills to create dashboards, generate compliance reports, and support internal and external audits through data-driven insights.

• Generate compliance reports from an existing dashboard or build requirements to create a new reporting dashboard

• Proactively Monitor, track, and report on security compliance status across systems and processes.

• Analyze large datasets to identify trends, anomalies, and compliance risks.

• Support security audits, assessments, and certification efforts through data collection and analysis.

• Possess strong communication skill, collaborate with cross-functional matrix teams to drive root cause analysis, corrective actions and improvements based on data insights.

• Maintain and enhance compliance reporting dashboards and metrics for leadership visibility and decision making.

• Experience working with security architects and technical security teams to define and implement security processes and procedures based on industry-standard best practices and compliance requirements. Defining the requirements and validating the procedures and audit testing methodology

• Working with the Development teams to ensure automation of evidence collection and evidence management is always in line with compliance expectations, otherwise, identifies specific actions and owners to meet the expectations.

• Assisting team members in addressing highly complex security issues applicable to enterprise environment

• Ability to utilize project management principles to properly scope compliance work efforts by service lines, identify common areas of work, and create a measurable milestone plans across service lines to enable completion of compliance work items on time.

• Ability to manage multiple priority projects simultaneously under a short timeline

• Experience/familiar with enterprise risk management (ERM) framework, service delivery operations, software development lifecycle and be able to understand when to request and integrate risk items into compliance reporting.

• Experience with compliance programs such as FedRAMP/ FISMA, HIPAA, GDPR, SOC 2, PCI, NIST, ISO, ITAR, etc.

• Conducting regular reviews on compliance progression of systems and hosting internal audit/assessment as required to maintain compliance certifications.

• Ability to translate and interpret regulatory compliance requirements into technical controls

• Ability to understand cloud enterprise business computing operations/requirements, and effectively communicate to service lines what is expected in order to consider a work item complete. Also, will possess good understanding of networking security including security systems such as firewalls, intrusion detection, vulnerability scanning, OS patching, health-checking

• Diagnosing the root cause of problems and propose solutions: Examples would be failed patches, tooling issues, false positives on system tests, authentication problems. Drive and track audit, security and compliance finding remediation to closure.

• Experience with enterprise configuration Management database (CMDB) or IT Asset inventory Management. Understand CMDB's structure, data quality, relationships between CIs (Configuration Items), and updates. Use the CMDB for risk, audit, and compliance analysis and reporting

• Proficiency in SQL, Excel (advanced level: pivot tables, macros), and ServiceNow— data analytics and visualization functionalities

• Ability to process large datasets, identify and handle missing data, data transformation, normalization, and data quality checks.

• Ability to perform data analysis to discover patterns and trends to mitigate security risks and drive business results

• Work with stakeholders to define key metrics and KPIs; develop dashboards and reports for business users.

• Collaborate with database engineers, data owners, security focal, product managers, and broader metrics teams to understand data needs.

• Results oriented with intense focus on achieving both short and long term goals. He/she should be able to drive and execute an agenda in a fast paced, dynamic environment.

• Strong project management skills with ability to design visual and appealing presentations

• Strong collaboration, problem-solving and critical-thinking abilities.

• Excellent communication skills — ability to explain technical findings to non-technical audiences.

• Good time management, organizational skills, and ability to prioritize tasks.

• Curiosity and a continuous learning mindset.

• A highly organized with strong attention to detail, analytical and project management skills

• Work independently within a team focused organization.

• Experience or familiar with cloud service models; IaaS preferred.

• Project management and consulting experience is a plus

• Experience with process automation is a plus

• Experience with Linux Shell, Perl or Python is a plus

In this role, you'll work in one of our IBM Consulting Client Innovation Centers (Delivery Centers), where we deliver deep technical and industry expertise to a wide range of public and private sector clients around the world. Our delivery centers offer our clients locally based skills and technical expertise to drive innovation and adoption of new technology.

In this role, you'll work in one of our IBM Consulting Client Innovation Centers (Delivery Centers), where we deliver deep technical and industry expertise to a wide range of public and private sector clients around the world. Our delivery centers offer our clients locally based skills and technical expertise to drive innovation and adoption of new technology.

• Role is SAP subject matter expert/architect role for Security.
• Key responsibilities will involve working with Business Stakeholders, understanding requirements, translating user requirements into SAP IT scope, assessing impact on application & connected systems, estimating high level schedule and efforts to implement solution and ensure successful technical delivery

• Candidate must have min. 6-12 years of solid SAP Security Implementation experience with focus on Role authorizations.
• Solid implementation and hands-on experience in ECC 6.0 role build.
• Experience in working with stakeholders and leading SAP security projects.
• Sound understanding of SOD - segregation of duties.
• Support technical requirement gathering, develop prototypes/PoCs/recommend solutions with limited information from the business, delivery quality technical specifications and documentation

• SOX/GRC Control experience

In this role, you'll work in one of our IBM Consulting Client Innovation Centers (Delivery Centers), where we deliver deep technical and industry expertise to a wide range of public and private sector clients around the world. Our delivery centers offer our clients locally based skills and technical expertise to drive innovation and adoption of new technology

In this role, you'll work in one of our IBM Consulting Client Innovation Centers (Delivery Centers), where we deliver deep technical and industry expertise to a wide range of public and private sector clients around the world. Our delivery centers offer our clients locally based skills and technical expertise to drive innovation and adoption of new technology.

• Will be working on Application security testing Skills.
• Strategize and plan static and dynamic application security testing (SAST/DAST / SCA) tools.
• Will be responsible for Secure Coding Practices

• BE / B Tech in any stream, M.Sc. (Computer Science/IT) / M.C.A, with Minimum 5 plus years of experience
• Application Security Testing: Experience with static and dynamic application security testing (SAST/DAST/ SCA) tools.
• Secure Coding Practices: Knowledge of secure coding standards (e.g., OWASP Top Ten) and experience in reviewing code for security vulnerabilities.
• Threat Modeling: Ability to conduct threat modeling sessions to identify and mitigate security risks

• Vulnerability Assessment: Experience in conducting vulnerability assessments and penetration testing Application
• Security Testing: Experience with static and dynamic application security testing (SAST/DAST) tools.
• Security Tools: Proficiency in using security tools like Burp Suite, Nessus, or Fortify

In this role, you'll work in one of our IBM Consulting Client Innovation Centers (Delivery Centers), where we deliver deep technical and industry expertise to a wide range of public and private sector clients around the world. Our delivery centers offer our clients locally based skills and technical expertise to drive innovation and adoption of new technology.

• Will be working on Application security testing Skills.
• Strategize and plan static and dynamic application security testing (SAST/DAST / SCA) tools.
• Will be responsible for Secure Coding Practices

• BE / B Tech in any stream, M.Sc. (Computer Science/IT) / M.C.A, with Minimum 4 plus years of experience
• Application Security Testing: Experience with static and dynamic application security testing (SAST/DAST/ SCA) tools.
• Secure Coding Practices: Knowledge of secure coding standards (e.g., OWASP Top Ten) and experience in reviewing code for security vulnerabilities.
• Threat Modelling: Ability to conduct threat modelling sessions to identify and mitigate security risks

• Vulnerability Assessment: Experience in conducting vulnerability assessments and penetration testing Application
• Security Testing: Experience with static and dynamic application security testing (SAST/DAST) tools.
• Security Tools: Proficiency in using security tools like Burp Suite, Nessus, or Fortify

In this role, you'll work in one of our IBM Consulting Client Innovation Centers (Delivery Centers), where we deliver deep technical and industry expertise to a wide range of public and private sector clients around the world. Our delivery centers offer our clients locally based skills and technical expertise to drive innovation and adoption of new technology

In this role, you'll work in one of our IBM Consulting Client Innovation Centers (Delivery Centers), where we deliver deep technical and industry expertise to a wide range of public and private sector clients around the world. Our delivery centers offer our clients locally based skills and technical expertise to drive innovation and adoption of new technology.

• Senior SOC Analyst works within the 24/7 Cyber Fusion Center (CFC).
• The role is responsible for monitoring, triaging, analyzing and escalating incidents and events in the technology environment.
• This Senior SOC Analyst will evaluate data collected from a variety of cyber operations tools (e.g., SIEM, IDS/IPS, Firewalls, network traffic logs, cloud platforms, and SOAR solutions to analyze events that occur within the environments for the purposes of detecting and mitigating threats in both structured and unstructured situations.
• Individuals in this role are proactive and well-versed in log, identity, cloud, network, and root cause analysis

• Senior SOC Analyst must have skills in email security, system event, network event, log analysis. Knowledge of common IT and security technology concepts with emphasis on TCP/IP network security, operating system security, modern attack and exploitation techniques is important.
• Experience conducting event analysis in AWS and Azure environments. Characterize and analyse alerts to understand potential and active threats.
• Perform event correlation using information gathered from a variety of sources within the enterprise to gain situational awareness and determine the nature and characteristics of events that could be an observed attack

• Document and escalate events/incidents that may cause adverse impact to the environment. Provide daily summary reports of events and activity relevant to cyber operations. Perform Cyber Operations trend analysis and reporting.
• Perform high-quality triage and thorough analysis for all alerts. Demonstrate effective communication skills both written and verbal. Actively engage in team chats, calls, and face to face settings. Constantly contribute to SOC runbooks/playbooks
• Recommend improvements to automations, alert fidelity, and security controls. Preferred Experience: Experience / Knowledge in CyberArk, Azure SSO. Knowledge of enterprise web technologies, security, and cutting-edge infrastructures

Your primary responsibilities will include:

Sales Execution:Identify new opportunities, manage the transition of client interests to SQLs, and ensure the involvement of the right technical stakeholders.

• Lead Generation and Sales Development: Experience in leading generation and sales development in the tech industry or a similar complex field.
• Target Achievement: Consistently meeting targets in fast-paced environments by fostering collaboration.
• Digital Communication: Proficient in verbal and written communication across digital platforms.

• Data & AI Expertise: Possessing knowledge of Data & AI to offer credible advisory to clients (training on IBM's Data & AI offerings will be provided).

In this role, you'll work in one of our IBM Consulting Client Innovation Centers (Delivery Centers), where we deliver deep technical and industry expertise to a wide range of public and private sector clients around the world. Our delivery centers offer our clients locally based skills and technical expertise to drive innovation and adoption of new technology

In this role, you'll work in one of our IBM Consulting Client Innovation Centers (Delivery Centers), where we deliver deep technical and industry expertise to a wide range of public and private sector clients around the world. Our delivery centers offer our clients locally based skills and technical expertise to drive innovation and adoption of new technology.

• The role supports full end to end software development cycle, from initial client engagement, through assessments and road-mapping, to longer term engagement in an advisory capacity.
• As an Application Security Consultants, the person should leverage the technical expertise of the security competencies, varied product and delivery capabilities

• Candidate with 8 + years of experience in IT domain with 3+ years on Delina (Thycotic) PAM implementation with Thycotic Certification (Optional).
• Experience in development and end to end implementation, design and architecture of privileged access solution using Delina Secret Serveries
• Experience in Installing and upgrading secret server, onboarding secrets, remote password changing, configuring roles & Permissions, configuring folder structure, secret templates, secret policy, launchers, session recording, account discovery, sites, event subscriptions, event pipeline policy and other operational activities for Delina Secret Server

• Knowledge of Web Services (REST/SOAP), Directories (LDAP, AD), etc and PowerShell scripts in PAM solution
• REST API Automations using PowerShell Scripting (Bulk Upload Utility options, Account Onboarding PowerShell Script, User Deletion using Script PowerShell Script)
• Good understanding of LDAP concepts and working experience with at least few of the following directories:' Oracle Internet Directory/Oracle Virtual Directory, Sun Directory Server, Active Directory, Tivoli Directory Server