Security Consultant - Application Security

Introduction

A career in IBM Consulting is rooted by long-term relationships and close collaboration with clients across the globe.You'll work with visionaries across multiple industries to improve the hybrid cloud and AI journey for the most innovative and valuable companies in the world. Your ability to accelerate impact and make meaningful change for your clients is enabled by our strategic partner ecosystem and our robust technology platforms across the IBM portfolio; including Software and Red Hat.Curiosity and a constant quest for knowledge serve as the foundation to success in IBM Consulting. In your role, you'll be encouraged to challenge the norm, investigate ideas outside of your role, and come up with creative solutions resulting in ground breaking impact for a wide network of clients. Our culture of evolution and empathy centers on long-term career growth and development opportunities in an environment that embraces your unique skills and experience.

Your Role And Responsibilities

The role supports full end to end software development cycle, from initial client engagement, through assessments and road-mapping, to longer term engagement in an advisory capacity.As an Application Security Consultants, the person should leverage the technical expertise of the security competencies, varied product and delivery capabilities.Hands on experience in Secure SDLC, DAST, SAST, HP Fortify and Burp SuiteProvide strategic advice and insights to clients based on deep domain knowledge and industry best practices.Identify potential risks and develop mitigation strategies to ensure project success and client satisfaction.Lead and coordinate incident response activities, including investigation, containment, and remediation of security incidents.Provide security training and awareness programs to developers on security policies, procedures, and best practices.Ensure applications team adhere to relevant security standards, regulatory requirements, and industry best practices (e.g., OWASP, NIST, PCI DSS).Provide support for regulatory and internal audits, diligently tracking reported observations through to closure

Preferred Education

Master's Degree

Required Technical And Professional Expertise

BE/Btech/MCA/M.Tech. 5-7 yrs hands on experience. Hands on experience in Secure SDLC, DAST, SAST, HP Fortify and Burp Suite Ensure applications team adhere to relevant security standards, regulatory requirements, and industry best practices (e.g., OWASP, NIST, PCI DSS).

Preferred Technical And Professional Experience

OEM certification from one of the following, HP Fortify and Burp Suite