Security Engineer

IBM
Yorktown Heights, United States of America
1 month ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Senior

Job location

Yorktown Heights, United States of America

Tech stack

Proxy Servers
Software Applications
Software System Penetration Testing
IBM System I
Systems Engineering
Cloud Computing
Cloud Computing Security
Cloud Storage
Code Review
Computer Networks
DNS
Monitoring of Systems
Hypertext Transfer Protocols (HTTP)
IBM Cloud Computing
Identity and Access Management
Intrusion Detection and Prevention
Intrusion Detection Systems
Virtual Private Networks (VPN)
Network Security
Network Configuration and Change Management
NetFlow
Network Forensics
Network Functions Virtualization
Network Segmentation
Quantum Computing
Security Information and Event Management
Software Engineering
TCP/IP
Wireshark
Software Vulnerability Management
Data Logging
Load Balancing
Cloud Platform System
Software Security
QRadar
Firewalls (Computer Science)
Containerization
Kubernetes
Information Technology
SDN Network
Cybercrime
Devsecops
Docker
Vulnerability Analysis

Job description

IBM is seeking a skilled Security Engineer specialized in Quantum Computing Software in the US, reporting to T. J. Watson Research Center in Yorktown Heights, NY. This role will focus on ensuring the security, compliance, and integrity of an organization's software applications, infrastructure, and data, with a particular emphasis on high-tech and sensitive environments like quantum computing. The candidate will be responsible for identifying and addressing security vulnerabilities, implementing security measures, and ensuring that the product adheres to internal security policies, regulatory standards, and best practices.

This position is critical in safeguarding the organization's assets against potential cyber threats by proactively assessing risks, applying security frameworks, and working closely with teams such as IBM's CISO and development groups to integrate security throughout the entire product lifecycle.

Requirements

Good communication skills and the ability to handle fast-paced, complex work are essential. A self-motivated and driven individual who can work independently as well as in multi-team settings.

5+ years of experience in systems engineering, software security, or related roles.

Required technical and professional expertise

Degree in Computer Science or equivalent, or equivalent work experience.

Solid experience in core security principles, including network security, application security, identity and access management (IAM), data encryption, vulnerability management, and security incident response.

Hands-on experience with security tools for security monitoring, logging, and response, including experience with penetration testing, vulnerability scanning, intrusion detection systems (IDS), and firewall management.

Cloud security expertise, including cloud storage, network configurations, containerization (e.g., Docker, Kubernetes), and cloud-based identity management systems.

Experience working in DevSecOps or secure software development lifecycle (SDLC) environments, where security practices are integrated into every stage of development. This includes conducting code reviews, security testing, and working with development teams to fix vulnerabilities early in the development process.

Experience in leading or contributing to incident response efforts, including identifying and mitigating security breaches, conducting post-incident forensic analysis, and developing strategies to prevent similar incidents in the future.

Deep understanding of networking concepts and security best practices, including TCP/IP stack, DNS, HTTP/S, VPNs, and network segmentation strategies.

Hands-on experience designing and managing secure network architectures, including the configuration and management of firewalls, load balancers, proxies, and intrusion detection/prevention systems (IDS/IPS).

Experience with network traffic analysis and monitoring tools (e.g., Wireshark, NetFlow, or equivalent) to detect anomalous behavior and potential threats.

Collaboration and communication skills: the ability to work effectively with cross-functional teams, including product development, operations, and the CISO team, is essential. Strong communication skills are required to articulate security risks, vulnerabilities, and solutions to both technical and non-technical stakeholders.

Preferred technical and professional experience

Experience or familiarity with the security needs of quantum computing environments, especially given the sensitivity and complexity of quantum software and infrastructure. Understanding of how quantum computing interacts with existing security systems, how data is handled, and how quantum-specific encryption methods apply.

Expertise in using security tools, particularly IBM QRadar for security information and event management (SIEM).

Experience securing cloud infrastructures, particularly on IBM Cloud.

Familiarity with software-defined networking (SDN) and network function virtualization (NFV) technologies, and their security implications in hybrid and cloud environments.

Understanding of regulatory frameworks and compliance requirements, such as GDPR, HIPAA, SOC 2, and other industry-specific regulations. The Security Engineer should be able to navigate compliance audits and ensure that the product meets all legal and regulatory standards.

Apply for this position