Introduction
A career in IBM Consulting is built on long-term client relationships and close collaboration worldwide. You'll work with leading companies across industries, helping them shape their hybrid cloud and AI journeys. With support from our strategic partners, robust IBM technology, and Red Hat, you'll have the tools to drive meaningful change and accelerate client impact. At IBM Consulting, curiosity fuels success. You'll be encouraged to challenge the norm, explore new ideas, and create innovative solutions that deliver real results. Our culture of growth and empathy focuses on your long-term career development while valuing your unique skills and experiences.
Your Role And Responsibilities
As an Application Security Consultants, the person should leverage the technical expertise of the security competencies, varied product and delivery capabilities.
Hands on experience in Secure SDLC, DAST, SAST, HP Fortify and Burp Suite
Provide strategic advice and insights to clients based on deep domain knowledge and industry best practices.
Identify potential risks and develop mitigation strategies to ensure project success and client satisfaction.
Lead and coordinate incident response activities, including investigation, containment, and remediation of security incidents.
Provide security training and awareness programs to developers on security policies, procedures, and best practices.
Ensure applications team adhere to relevant security standards, regulatory requirements, and industry best practices (e.g., OWASP, NIST, PCI DSS).
Provide support for regulatory and internal audits, diligently tracking reported observations through to closure
Preferred Education
Bachelor's Degree
Required Technical And Professional Expertise
- Exposure to Application Security: Familiarity with security principles and knowledge of Application Security technologies, including threat models and DevSecOps concepts.
- Understanding of Security Assessments: Experience working with assessments, workshops, and interviews to identify application security issues, risks, and vulnerabilities.
- Incident Response Knowledge: Exposure to analyzing and resolving security incidents, including developing incident response plans and remediation recommendations.
- Security Strategy Development: Experience applying security principles to define business drivers and develop associated security strategies and programs.
- DevSecOps Concepts: Familiarity with DevSecOps best practices and concepts to support clients in achieving a superior security posture.
Requirements
Preferred technical and professional experience
Required Professional and Technical Expertise*
BE/Btech/MCA/M.Tech. 5-7 yrs hands on experience. Hands on experience in Secure SDLC, DAST, SAST, HP Fortify and Burp Suite Ensure applications team adhere to relevant security standards, regulatory requirements, and industry best practices (e.g., OWASP, NIST, PCI DSS)....Less
Preferred Professional And Technical Expertise
OEM certification from one of the following, HP Fortify and Burp Suite
