IBM Cloud Security Tester in London, United Kingdom

IBM is seeking an experienced Security Tester to join its Cloud Security team. You’ll be involved in working directly with strategic customer accounts, and in implementing high-performance, high-scale cloud security solutions for them. You’ll also be working with cloud Security Architects and other product teams in order to deploy the most optimal security solutions to ensure maximum customer success.The Cloud Security Tester is a technical, customer-facing role having paramount impact on customers’ experience with IBM cloud solutions. As a Cloud Security Tester, you will be responsible for Network & Application Security Testing (Penetration Testing, Ethical Hacking, Vulnerability Assessment, Code Review, White Box Testing).As an ideal candidate, you will have:

  • Experience on Application Security tools, Integration of testing mechanisms with industry best practices such as the Open Web Application Security Project (OWASP).

  • Knowledge of threat modeling and other risk identification techniques, Knowledge of system security vulnerabilities and remediation techniques.

  • common software vulnerabilities and their mitigation techniques.

  • Knowledge of Configuration and Security logs of Security Firewall and edge Devices.

  • Excellent written and verbal communication skills.

  • Excellent teamwork skills.

  • The ability to evaluate new and emerging security technologies.

  • Experience with each of the following:

  • Firewalls, Intrusion Prevention System (IPS), Virtual Private Network (VPN) and other edge and network security components - Vyatta Gateway (GW), Fortigate, Checkpoint, Cisco Adaptive Security Appliance (ASA), Juniper Junos Network Operating System (JunOS) Firewall (FW)

  • Load Balancing (LB) using edge nodes; Install/Configure/ Ops for NetScalar, HAProxy LBs

  • Security Assertion Markup Language (SAML), Open Standard for authorization Single Sign On (OAuth2 SSO) and open standard and decentralized authentication protocol (OpenID) Connect implementations

Client Technical Engagement