Security Consultant, IBM Corporation, Armonk, NY and various unanticipated client sites throughout the US (Up to 40% telecommuting permitted): Identify application security by design requirements and objectives based on an application profile, business context and applicable data security regulations. Perform application security risk assessments and provide recommendations towards the implementation of application security controls to secure applications. Develop policies and procedures to meet organizational application security requirements. Perform assessments of the architecture to secure application development approach and strengthen the application security architecture and posture by providing countermeasures to improve application security posture and to reduce cyber risk at scale. Analyze applications for potential threats and attack vectors by conducting workshops to document and understand security architecture, attack surface, trust boundaries, and data flows. Implement and configure security tools such as IriusRisk and SD Elements to identify security requirements for the adoption of secure development practices to manage and sustain compliance across the organization. Work on projects related to Application Security, Threat Modeling and DevSecOps. Define and document an end-to-end secure software development life cycle (Secure-SDLC) to categorize and define essential security controls and countermeasures for clients. Assist client to define and document security controls protocols based on business requirements. Develop Threat Models that enumerate cybersecurity threats by attack surface; document and verify the existing security mitigations and identify if additional mitigations are required. Utilize: DevSecOps, Threat Modeling, Security Requirement Management, Vulnerability Assessment and Remediation, SD Elements, IriusRisk. Required: Master's degree or equivalent in Computer Science, Engineering, Information Technology or related (employer will accept a Bachelor's degree plus five (5) years of progressive experience in lieu of a Master's degree) and one (1) year of experience as a Security Specialist, Application Security Consultant, Security Analyst or related. One (1) year of experience must include utilizing DevSecOps, Threat Modeling, Security Requirement Management, Vulnerability Assessment and Remediation, SD Elements, IriusRisk. $173,056 to $221,600 per year. Please send resumes to recruitad@us.ibm.com. Applicants must reference H202 in the subject line.
Jobs.Now Note: To tap into these hidden job opportunities, it's crucial to adhere strictly to the application process outlined in each job ad. At Jobs.Now, we ensure that every listing includes detailed employer instructions. Follow them precisely to be considered for these unique positions!
