Introduction

In this role, you’ll work in one of our IBM Consulting Client Innovation Centers (Delivery Centers), where we deliver deep technical and industry expertise to a wide range of public and private sector clients around the world. Our delivery centers offer our clients locally based skills and technical expertise to drive innovation and adoption of new technology.A career in IBM Consulting embraces long-term relationships and close collaboration with clients across the globe.You’ll work with visionaries across multiple industries to improve the hybrid cloud and AI journey for the most innovative and valuable companies in the world. Your ability to accelerate impact and make meaningful change for your clients is enabled by our strategic partner ecosystem and our robust technology platforms across the IBM portfolio; including IBM Software and Red Hat.Curiosity and a constant quest for knowledge serve as the foundation to success in IBM Consulting. In your role, you’ll be encouraged to challenge the norm, investigate ideas outside of your role, and come up with creative solutions resulting in ground breaking impact for a wide network of clients. Our culture of evolution and empathy centers on long-term career growth and development opportunities in an environment that embraces your unique skills and experience.

In this role, you'll work in one of our IBM Consulting Client Innovation Centers (Delivery Centers), where we deliver deep technical and industry expertise to a wide range of public and private sector clients around the world. Our delivery centers offer our clients locally based skills and technical expertise to drive innovation and adoption of new technology.

Your role and responsibilities

As a Security Expert you will support multiple projects to ensure compliance with Security & Privacy regulations. Among the responsibilities for the role are the following:
• Engage with projects as a “perform resource” for project duration
• Work with PM to attend Risk Assessments
• Review and understand project scope to identify client and regulatory requirements
• Identify, design and implement foundational, client, and regulatory controls by developing detailed processes and procedures based on most current Data Security & Privacy framework requirements
• Document and maintain a Risk / Incident Management Log and ensure project leadership review
• Work with project team to effectively execute controls per timing in Framework
• Perform continuous monitoring for compliance
• Drive any gap remediation activities
• Coordinate execution of end-of-project security activities

Required education

Bachelor's Degree

Preferred education

Bachelor's Degree

Required technical and professional expertise

Experience NeededSpecific skills needed are listed below; the level of experience will vary based on tenure.* Strong understanding of applicable security frameworks and standards, such as NIST, ISO 27001, andCOBIT* Experience with risk assessment and mitigation strategies* Knowledge of applicable compliance regulations, such as NERC CIP, FERC, PCI-DSS, or SOX* Excellent analytical, problem-solving, and communication skills* Ability to work in a fast-paced environment and prioritize multiple projects and tasks* Familiarity with Security information and event management (SIEM) systems, such as Splunk or ELK* Familiarity with Compliance management software, such as RSA Archer or MetricStream* Familiarity with Vulnerability assessment tools, such as Nessus or OpenVAS