IBM Cloud PaaS Security DevOps team is looking for team members to operate and maintain the security platform for IBM Cloud offering. Candidate should be a motivated team player with strong desire for standardization and automation. The PaaS security team is designed to solve the specific security and availability requirements of Wanda & IBM Cloud PaaS Platform and ensure the Service level agreement(SLA) of the PaaS platform by updating the security solutions as well as monitoring and fixing the security issues timely.The China security PaaS Devops engineers will focus on the Gen2 PaaS Security and Compliance and assist on Wanda cloud security and compliance, which include the following tasks:System level security hardening of worker kube clusterSecurity solution deployment and operation for the existing Gen1 Scope (Cloud Foundry, ACE (Bluemix console), BSS, Bluemix Login Server, Bluemix CLI, and internal components such as Doctor and Monitoring) as well as upcoming additional Gen2 scopes such as IAM, and "Worker" part of Container (Kube) Service.Continuous monitoring of security/compliance/audit readiness (Bluemix PaaS GRC)Compliance to Secure Engineering policyCompliance to Key Management policyPenetration Test on PaaSPer Tenant Security logs separation, security reports and security log forwardingWork with Wanda T1/T2 engineers to fix/resolve security issues of Wanda Cloud PaaS platformAssist Wanda cloud security audit activitiesLocation:BJ/SH
At least 3 years experience on Linux/Unix Operating System, System Administration.At least 3 years experience on MS Windows and Windows Active Directory Administration.At least 3 years experience on DevOps, Continuous Delivery processes and tooling such as RTC, GIT, Jeckins etc.At least 2 years experience on Security technologies and best practice such as Vulnerability Scan, Patch management, SIEM, OS hardening, Threat analysis, Security monitoring.At least 2 years experience on scripting and API development such as Python, Shell Script, Pearl, GO LANG and Build Tools such as Puppet, UrbanCode, Chef, GitHub etc.Rich Knowledge and practical experience on BOSH, Cloudfoundry, Docker, Kubernetes etcVirtualization(VMWare, XEN, OpenStack or Cloud Infrastructure as a Service) & Networking(Firewall, Load Balancers, VPN, TCP/IP, OSI Layer, IPSEC, Routing) are a plusCandidate with advance knowledge on Security technologies and 5+ years experience may consider as senior position.
IBM is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.