IBM Cloud Object Storage DevOps Engineer
-
- Software Engineering
- Professional
IBM Cloud Object Storage DevOps Engineer
-
- Software Engineering
- Professional
Introduction
At IBM, work is more than a job – it’s a calling: To build. To design. To code. To consult. To think along with clients and sell. To make markets. To invent. To collaborate. Not just to do something better, but to attempt things you’ve never thought possible. Are you ready to lead in this new era of technology and solve some of the world’s most challenging problems? If so, lets talk.
Your Role and Responsibilities
The IBM Cloud Object Storage (COS) group is looking for a technical, talented, innovative and enthusiastic DevOps Engineer who has experience in Security and Compliance to lead and drive automation of compliance, security awareness, training, applying best practices for secured development across our growing portfolio of next generation COS components/services for IBM Cloud.
At IBM, work is more than a job – it’s a calling: To build. To design. To code. To consult. To think along with clients and sell. To make markets. To invent. To collaborate. Not just to do something better, but to attempt things you’ve never thought possible. Are you ready to lead in this new era of technology and solve some of the world’s most challenging problems? If so, lets talk.
Your Role and Responsibilities
The IBM Cloud Object Storage (COS) group is looking for a technical, talented, innovative and enthusiastic DevOps Engineer who has experience in Security and Compliance to lead and drive automation of compliance, security awareness, training, applying best practices for secured development across our growing portfolio of next generation COS components/services for IBM Cloud.
Security is something that every development team needs to incorporate into every phase of their product development life cycle and the Security and Compliance Focal is expected to ensure security is built into the design, planning, implementation, and execution of our network services.
Required Technical and Professional Expertise
- 5+ years of demonstrated experience in successful driving and execution of compliance programs for common IT security standards/regulations: SOC1/2/3, ISO27K, HIPAA, PCI, FBA (formerly FFIEC), FedRAMP, GDPR, etc.
- 5+ years of working experience with designing/building cloud software and infrastructure.
- Expert knowledge of all layers of the OSI model, most importantly the network (layer 3) and application (layer 7).
- Domain expertise in cloud software and infrastructure technologies.
- Strong knowledge and understanding in penetration testing methodologies and exploits (web applications, containers, APIs, network devices, databases, operating systems, and various cloud technologies).
- Strong knowledge and understanding of offensive cybersecurity operations and defensive integrations, including enumeration and exploitation of various cloud-based technologies and development of secure applications.
- Strong ability to communicate highly technical aspects to Executives, IT staffs, CISO team, auditors, respectively.
- Strong experience with various scripting languages (Python, Ruby, Bash, etc.).
- Familiarity with serverless services, containerization and other cloud technologies.
- Strong familiarity with OWASP Top Ten, NIST, CIS and MITRE ATT&CK
- 5+ years of demonstrating experience in system or application administration role(s).
Preferred Technical and Professional Expertise
- 7+ years of demonstrated experience in successful driving and execution of compliance programs for common IT security standards/regulations: SOC1/2/3, ISO27K, HIPAA, PCI, FBA (formerly FFIEC), FedRAMP, GDPR, etc.
- 7+ years of working experience with designing/building cloud software and infrastructure.
- Expert knowledge of all layers of the OSI model, most importantly the network (layer 3) and application (layer 7).
- Domain expertise in cloud software and infrastructure technologies.
- Expert knowledge and understanding in penetration testing methodologies and exploits (web applications, containers, APIs, network devices, databases, operating systems, and various cloud technologies).
- Expert knowledge and understanding of offensive cybersecurity operations and defensive integrations, including enumeration and exploitation of various cloud-based technologies and development of secure applications.
- Expert ability to communicate highly technical aspects to Executives, IT staffs, CISO team, auditors, respectively.
- Expert experience with various scripting languages (Python, Ruby, Bash, etc.).
- Deep understanding and implementation with serverless services, containerization and other cloud technologies.
- Domain expertise with OWASP Top Ten, NIST, CIS and MITRE ATT&CK.
- 7+ years of demonstrating experience in system or application administration role(s).
Want to know what it’s like to be an IBMer?
Key Job Details
Don’t see a fit at this time?
Don’t worry. Join our Talent Network and get notified about the latest opportunities.