Security Consultant: Risk & Compliance

Introduction
In this role you’ll work in one of our IBM Consulting Client Innovation Centers (Delivery Centers) where we deliver deep technical and industry expertise to a wide range of public and private sector clients around the world.​ Our delivery centers offer our clients locally based skills and technical expertise to drive innovation and adoption of new technology.

Information and Data are some of the most important organizational assets in today’s businesses. As a Security Consultant you will be a key advisor for IBM’s clients analyzing business requirements to design and implement the best security solutions for their needs. You will apply your technical skills to find the balance between enabling and securing the client’s organization with the cognitive solutions that are making IBM the fastest growing enterprise security business in the world.

Your Role and Responsibilities

• Experience in Internal Control General Computer and Application Control Audit background.
• Knowledge and experience in various Information security standards / regulations / best practices (ISO-27001 COBIT PCI-DSS GDPR HIPAA SOC2 etc.
• Knowledge of efficient way to protect the system networks software data and information systems against security threats.
• Experience collaborating with a team of security experts in a diverse set of security topics including but not limited to security architecture financial controls and regulatory compliance identity and access management data loss prevention and privacy

Required Technical and Professional Expertise

• Good understanding of and experience with Information Risk Management IT Security and Compliance and Security Controls and Audit.
• Understanding of internal and external IT security standards SOX PCI SOC2/1 ISO27001 standards and relevant legal compliance aspects
• Good understanding of cloud security requirements and third-party control assurance.
• Ability to interface with different groups (Third parties Business and IT) internal and external to IT (security) and to network globally across Group businesses as well as with external groups.
• Experience collaborating with a team of security experts in a diverse set of security topics including but not limited to security architecture financial controls and regulatory compliance identity and access management data loss prevention and privacy

Preferred Technical and Professional Expertise

• Knowledge of Data Security Standards: PCI DSS Privacy Principles
• Driving Platform / Application security and compliance
• Ability to foresee and identify mitigation strategies for Risks & Analytical and problem solving skills