IT Security Specialist

Job Description

Introduction
At IBM, work is more than a job - it's a calling: To build. To design. To code. To consult. To think along with clients and sell. To make markets. To invent. To collaborate. Not just to do something better, but to attempt things you've never thought possible. Are you ready to lead in this new era of technology and solve some of the world's most challenging problems? If so, lets talk.
Your Role and Responsibilities
The position will monitor and ensure all security aspects from an IT perspective are met for a BPO (Business Process Outsourcing) service. IT Security will need to be compliant with client requested security standards and regulatory requirements (Contractual, and Client internal Security Policies) as well as IBM Security Policies and Standards.
The IT Security scope of work is based on ISO 27001 covering: Information Security Policies, Organization of Information Security, Human resources security, Asset Management, Access Control, Cryptography, Physical and environmental security, Operational Security, Communications Security, Systems acquisition development and maintenance, Supplier relationships, Information security incident management, Information security aspects of business continuity management and Compliance.
All the work performed will be based and guided from a Cient Security Document which will be built with the client to include security controls that need to be in place. Maintenance of this document will be integral part of the role as well as ensuring compliance with it. A security calendar will also be maintained and in compliance with the previous commitments.
Responsibilities:

• Identify, report, and resolve security vulnerabilities, weaknesses and violations.
• Assess risks, identify mitigation requirements.
• Support implemented security solutions according to company and customer policy and standards.
• Ensuring the Security Calendar is executed.
• Perform and provide timely operational support for remediation of vulnerabilities.
• Respond to information security alerts and incidents.
• Comply with the escalation of security incidents policies and procedures.
• Adhere to established Client Security Document to maintain appropriate security posture for all IT Aspects
• Perform and support hardening of desktop images and configurations in accordance with guidance from the Chief Information Security Officer (CISO) and Client.

Required Technical and Professional Expertise

• Fundamental knowledge of NIST, NIH, HHS, SANS, CWE guidance
• Good technical knowledge on security standards - tools - processes.
• Good knowledge on industry standards (ISO 27001) and regulatory compliance framework (PCI-DSS, HIPPA, FFIEC-FBA etc)
• Good Knowledge and Understanding of GDPR and LGPD.
• Experience in performing risk assessment and information security audits both as an auditor and auditee.
• Strong collaboration and influencing skills.
• Good communicate skills (Language proficiency in English and Spanish)
• Demonstrated ability to assess and remediate findings associated with network devices, servers, network printers and workstations.
• Fundamental knowledge of firewall configurations and desktop management tools for Palo Alto Networks.
• CompTIA Security CE, CASP, CISM x or CISSP Certified Information Systems Security Professional

Preferred Technical and Professional Expertise

• Bachelors Degree in Computer Science, Information Technology or Cybersecurity
• SANS, CWE or other relevant certification

About Business Unit
IBM Services is a team of business, strategy and technology consultants that design, build, and run foundational systems and services that is the backbone of the world's economy. IBM Services partners with the world's leading companies in over 170 countries to build smarter businesses by reimagining and reinventing through technology, with its outcome-focused methodologies, industry-leading portfolio and world class research and operations expertise leading to results-driven innovation and enduring excellence.
Your Life @ IBM
What matters to you when you’re looking for your next career challenge?
Maybe you want to get involved in work that really changes the world? What about somewhere with incredible and diverse career and development opportunities – where you can truly discover your passion? Are you looking for a culture of openness, collaboration and trust – where everyone has a voice? What about all of these? If so, then IBM could be your next career challenge. Join us, not to do something better, but to attempt things you never thought possible.
Impact. Inclusion. Infinite Experiences. Do your best work ever.
About IBM
IBM’s greatest invention is the IBMer. We believe that progress is made through progressive thinking, progressive leadership, progressive policy and progressive action. IBMers believe that the application of intelligence, reason and science can improve business, society and the human condition. Restlessly reinventing since 1911, we are the largest technology and consulting employer in the world, with more than 380,000 IBMers serving clients in 170 countries.
Location Statement
For additional information about location requirements, please discuss with the recruiter following submission of your application.
Being You @ IBM
IBM is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, pregnancy, disability, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.