Compliance Engineer

Job description

Introduction
At IBM, work is more than a job - it's a calling: To build. To design. To code. To consult. To think along with clients and sell. To make markets. To invent. To collaborate. Not just to do something better, but to attempt things you've never thought possible. Are you ready to lead in this new era of technology and solve some of the world's most challenging problems? If so, lets talk.

Your Role and Responsibilities

We are seeking a skilled Compliance Engineer to join our dynamic team, responsible for deploying, supporting, and reporting on security controls to ensure corporate, industry, and regulatory compliance across multiple IBM Software products.
Key Responsibilities:
·  Experience: Demonstrate proficiency in a compliance role within a SaaS organization.
·  Security Tooling: Possess deep knowledge of security auditing and compliance tools such as Vulnerability scanners(Nessus), SIEM, EDRs, etc.
·  Cloud Security: Have foundational knowledge of Cloud Security in AWS, IBM Cloud, or similar hyperscalers.
·  Audit Support: Assist in security audits conducted by third parties and possess a working knowledge of compliance frameworks like ISO27001, PCI-DSS, SOC2, etc. DevOps Integration: Help design and implement security controls into DevOps pipelines to enhance security practices.
·  Issue Resolution: Troubleshoot, triage, and resolve security issues across Dev, Test, and Production environments.
·  Cross-Functional Collaboration: Engage with other business units to drive deployment and maintenance initiatives.
·  Team Collaboration: Collaborate with other teams to identify areas for improvement and opportunities.
·  Automation: Utilize scripting technologies like Python, Bash, and Ansible to automate deployment, configuration, and various compliance activities.
·  Communication Skills: Excellent communication and technical documentation skills, including the ability to discuss complex topics with both technical and executive stakeholders.
·  Compliance Standards: Knowledge of varying compliance standards and their relevance to regulated customers.
Join us in our mission to ensure the highest standards of security and compliance across our software products. If you possess the required expertise and are eager to contribute to our dynamic team, we look forward to hearing from you.

Required Technical and Professional Expertise

·  Bachelor’s degree in Computer Science, Management Information Systems, or related discipline or equivalent work experience.
·  Solid understanding of agile software development life cycle, continuous integration and continuous delivery.
·  A willingness and aptitude for learning new skills.
·  Understanding of server virtualization concepts.
·  Experience with VMware or other server virtualization technologies.
·  Experience working with high availability, high performance, multi-data center systems and cloud environments.
·  Knowledge of related technologies including encryption, IPsec, VLANs, VPNs, routing, firewalls, proxy services, LAN/WAN connectivity.

Preferred Technical and Professional Expertise

·  Excellent communication and technical documentation skills including the ability to discuss complex topics with both technical and executive stakeholders.
·  Knowledge of varying compliance standards and how they relate to regulated customers.