Security ManagerOverviewWe have a very exciting opportunity for a Security Manager within the Watson Health Division in IBM. Having built and delivered our Watson Care Manager product earlier this year, establishing our presence on the Cloud, we need a Manager with proven security expertise to lead security activities within the Watson Care Manager organisation. We need a person who can provide leadership, set the strategy, goals and direction for the security to support the business which is in a very exciting phase of its evolution. Job Responsibilities:
Provide day to day project and technical direction for a team of security architects defining project plans and targets the team will focus on for a defined period.
Work with Product Management to assist in product development, selection and technical evaluations.
Perform and assist in evaluation / assessments of new or updated technology components across our system landscape.
Adhere to and evangelise technology standards across all areas of the business evolving process to manage latest security policies and vulnerabilities.
Own security throughout Product Lifecycle Management, i.e. assessing risks, identify how to fully support updated hosted technologies etc.
Work with and assist the Security Operations and engineering teams with security throughout the development lifecycle including triage of issues found and education on how to resolve
Assess impact of product changes on support, services and infrastructure
Act as an escalation point for design, implementation and operational queries
Work with the broader security community both inside and outside of IBM to ensure that the product and development process meets current best practices
Understand and communicate the implications and requirements of running the product suite in a secure and regulated environment
Work with Sales and Services to communicate the security and privacy policies to Customers
Bachelor’s degree in Management Information System, Computer Science, or technical area with focus on security.
Significant experience designing, implementing security solutions and managing people.
In depth experience with Security platforms such as Firewalls, IPS and DDOS.
CISSP, SANS GIAC, OSCP, or other industry certifications are highly desirable.
Excellent ability to identify threats and vulnerabilities in a system, model exploits, and design mitigations.
Experience working with Security Standards such as ISO27001 & HIPAA of value.
Significant experience of Infrastructure and application Security Testing.
Excellent Troubleshooting and Analytical skills.
See job description