Introduction
A career in IBM Consulting is built on long-term client relationships and close collaboration worldwide. You'll work with leading companies across industries, helping them shape their hybrid cloud and AI journeys. With support from our strategic partners, robust IBM technology, and Red Hat, you'll have the tools to drive meaningful change and accelerate client impact. At IBM Consulting, curiosity fuels success. You'll be encouraged to challenge the norm, explore new ideas, and create innovative solutions that deliver real results. Our culture of growth and empathy focuses on your long-term career development while valuing your unique skills and experiences.
Your Role And Responsibilities
As a Technical Consultant in Application Security, you will guide clients in understanding security challenges, risks, and vulnerabilities in their application landscape. You will apply deep technical expertise to incorporate security measures throughout the Software / Application Development lifecycle. Your primary responsibilities will include:
- Implement Security Measures: Apply technical expertise to incorporate security measures throughout the Software / Application Development lifecycle, including Design, Build, and deployment phases.
- Analyze Vulnerabilities: Analyze high-risk vulnerabilities, formulate mitigation plans, and minimize false positives as part of Application Security Vulnerability management.
- Provide Security Expertise: Offer in-depth knowledge of various Application Security domains, such as Threat Modelling, Secure SDLC, DevSecOps, and Application Security testing.
- Support Application Modernization: Implement security guardrails during Application Modernization programs on multicloud environments.
- Guide Clients: Guide clients in understanding security challenges, risks, and vulnerabilities in their application landscape.
Preferred Education
Master's Degree
Required Technical And Professional Expertise
- Exposure to Application Security: Familiarity with security challenges, risks, and vulnerabilities in application landscapes, including experience working with clients to understand these issues.
- Technical Expertise in Security Measures: Exposure to incorporating security measures throughout the Software / Application Development lifecycle, including Design, Build, and deployment phases.
- Knowledge of Application Security Domains: Experience working with various Application Security domains, such as Threat Modelling, Secure SDLC, DevSecOps, and Application Security testing.
- Experience with Vulnerability Management: Exposure to analyzing high-risk vulnerabilities, formulating mitigation plans, and minimizing false positives.
- Multicloud Environment Experience: Experience working with multicloud environments, specifically implementing security guardrails during Application Modernization programs.
Preferred Technical And Professional Experience
- Deep Understanding of DevSecOps: Experience working with DevSecOps practices, including integrating security into CI/CD pipelines and automating security testing.
- Familiarity with Multicloud Security: Exposure to implementing security controls and managing security risks in multicloud environments, including AWS, Azure, or Google Cloud.
- Knowledge of Threat Modelling Tools: Experience working with threat modelling tools and methodologies, such as STRIDE or PASTA, to identify and mitigate potential security threats.
