IBM Hiring Product Security Analyst
As a Product Security Analyst at IBM, you may be a part of a multinational development group running with IBM® Concert®—a cutting-edge-day carrier supplying generative AI-powered insights. This position includes leveraging IBM’s advanced automation gadget and protection incident reaction procedures to enhance software protection during on-premises and hybrid cloud environments. Your duties consist of:
Role: Product Security Analyst
Company: IBM
Location: Work From Home, Kochi, Kerala
Work Type: Full–time
Education: No Degree Mentioned
About Company
At IBM, our mission extends beyond simply doing a job—it’s approximately building, designing, coding, and wondering with a cause. We are searching for passionate people ready to guide and address the arena’s most hard problems within the era vicinity. Are you organized to innovate, collaborate, and resolve complicated issues in this new generation of technology? If so, we need to pay attention to you.
Job Description
A Product Security Analyst makes a specialty of safeguarding software programs and hardware products from protection threats. Their characteristic consists of identifying vulnerabilities through assessments, penetration testing, and threat modeling. They art work carefully with development agencies to combine protection great practices into the layout and improvement techniques. By studying capability risks and growing mitigation techniques, they make sure that merchandise meets corporation protection standards and guards man or woman information.
Additionally, they stay updated on growing threats and evolving protection technologies to proactively deal with ability troubles. Effective conversation and collaboration abilities are essential as they regularly liaise between technical agencies and stakeholders to deal with safety troubles.
Your Role and Responsibilities
- Automating Security Processes: Develop and control automation for product utility safety scans and triage protection findings.
- Coordinating Security Measures: Work with development groups to deal with utility vulnerabilities and oversee the vulnerability reporting and remediation techniques.
- Monitoring Security Posture: Continuously confirm and display the software program’s safety stance.
- Developing Security Tools: Design and place into effect database security features and gear to ensure constant cloud environments.
- Adhering to Standards: Apply steady improvement lifecycle practices and worldwide requirements to the organization’s cloud surroundings.
- Evaluating Technologies: Explore and integrate new technologies and methods to beautify safety abilities.
- Maintaining Compliance: Conduct audits, maintain certifications, and put into impact protection recommendations for compliance.
- Enhancing Security Features: Assess and implement authentication, authorization, and encryption solutions.
- Performing Security Assessments: Regularly conduct vulnerability scanning, chance assessment, and safety checks.
Key Responsibilities, Skills, and Knowledge
The perfect candidate needs to own:
- Secure Development Lifecycle Knowledge: Expertise in company outstanding practices and worldwide requirements for strong development.
- Automation Skills: Proficiency in automation tooling and scripting languages (Ruby, Python, PERL, Shell).
- Project Management: Strong venture management and communication skills.
- Security Tool Development: Experience in designing and imposing safety features for cloud environments.
- Audit and Compliance: Ability to carry out audits and preserve compliance certifications.
- Security Assessments: Skills in vulnerability scanning, risk assessment, and imposing intrusion detection controls.
Required Technical and Professional Expertise
- Experience: Over five years in professional technology roles.
- Data Organization: Proven functionality to structure and manipulate information efficaciously.
- Coding Skills: Proficiency in scripting languages and mastery in at least one programming language (Java, C/C++, C#, Go, JavaScript).
- Version Control: Familiarity with supply management equipment like GitHub Enterprise.
- Containerization: Working know-how of Docker and Kubernetes.
- Technical Communication: Clear and powerful verbal exchange capabilities.
- Preferred Technical and Professional Expertise
- CI/CD Tools: Experience with CI/CD automation gadgets (e.g., Tekton, Jenkins).
- Security Scanning Tools: Knowledge of safety software scanning equipment (e.g., SonarQube, Contrast, OWASP Zap).
- Container Security: Familiarity with Docker subject safety experiment equipment (e.g., Twistlock, Nessus, Trivy).
- Penetration Testing: Exposure to application penetration attempting out.
Benefits at IBM
Innovative Work Environment: Work on modern-day initiatives and generation with enterprise-principal tools.
Career Development: Access to non-forestall mastering opportunities and career boom internal a worldwide commercial enterprise employer.
Work-Life Balance: Enjoy flexible work arrangements and supportive surroundings for non-public and expert balance.
Comprehensive Benefits: Receive competitive compensation, health advantages, retirement plans, and well-being packages.
Diverse Culture: Be part of a diverse and inclusive administrative center that values amazing views and thoughts.
Other Jobs
HCLTech Walk-in For Voice Process
Python and CI/CD Lead Engineer