Security/Compliance Engineer

Our organization is responsible for developing and delivering standardized and automated VMware virtualization solutions on IBM Cloud to our clients. We are hiring experienced software engineers to be part of our dynamic development team to focus on engineering a secure architecture, developing a secure product, and maintaining a secure infrastructure and service to meet a broad set of security requirements and compliance standards.

• Performing critical operations on our Development and Production environments to meet Security and Compliance requirements.
• Maintaining Security and Compliance by monitoring, scanning, configuring, and patching a vast variety of cloud devices including various Windows and Linux OS systems, VMs, VMware ESXi, K8s nodes/clusters, cloud storage, and networking devices.
• Maintaining tooling and automation for managing security and compliance process for our internal and client environments.
• Deploying new architecture, devices, and automation for Security needs.
• Managing access and change controls for our development and production environments.
• Maintaining logging, performing analysis, and compiling evidence for Securityand Compliance reviews of our environments.
• The role is very important in our ability to deliver valuable automated and integrated solutions as a premier offering in IBM Cloud. With this, we have an extremely high demand for meeting the most stringent Security and Compliance standards. In our fast-paced and expanding organization, we foster an environment of continuous innovation and working in agile teams, to deliver the latest technology and provide excellent support to our clients.

8+ years of Overall experience as Security/Compliance Engineer.
3+ years of experience with system automation, scripting, and development
1+ years of experience with Linux system administration or development
1+ years of experience with Windows system administration or development
1+ years of experience with secure engineering practices and standards
1+ years of experience with software engineering and testing
1+ years of experience with Python
Strong communication skills in English

1+ years of experience with IBM SOS process and tooling, e.g. Nessus, QRadar, Uptycs, CrowdStrike, etc.
1+ years of experience with Windows Active Directory administration or development
1+ years of experience with Microsoft Windows Update or Group Policy Objects (GPO)
1+ years of experience with Access Control with IBM AccessHub
1+ years of experience with ServiceNow, e.g. for Change Management
1+ years of experience with GitHub issue and code management
1+ years of experience with IBM Cloud Risk Management process
1+ years of experience with IBM PSIRT process
1+ years of experience with data privacy and handling
1+ years of experience with ethical hacking and Pentesting
1+ years of experience with Jenkins build and platforms
1+ years of experience with networking, and network security components, firewalls, gateways
1+ years of experience with security standards, authentication, authorization, and encryption protocols
1+ years of experience with VMware administration
1+ years of experience with VMware API integration development
1+ years of experience with IBM Cloud API integration development
Experience with Compliance needs across Industry verticals - ISO 27001, SOC2, PCI, HIPAA, etc.