Skip to main contentA logo with &quat;the muse&quat; in dark blue text.

Security Engineer - DevSecOps

AT IBM
IBM

Security Engineer - DevSecOps

Baltimore, MD

Introduction
Information and Data are some of the most important organizational assets in today's businesses. As a Security Consultant, you will be a key advisor for IBM's clients, analyzing business requirements to design and implement the best security solutions for their needs. You will apply your technical skills to find the balance between enabling and securing the client's organization with the cognitive solutions that are making IBM the fastest growing enterprise security business in the world.

Your Role and Responsibilities
The DevSecOps Security Engineer will support dynamic and static analysis (DAST and SAST) of code for multiple applications using Fortify and work across technical teams to support the remediation of findings. The DevSecOps Security Engineer will support a large team of infrastructure, security and application team during migration of on-prem and cloud applications to the client Azure Government enclave. The security engineer will configure, operate and maintain Security Code Scanning tools (Fortify). The engineer will provide support for security assessment and authorization/ ATO process, security audits.

Want more jobs like this?

Get jobs delivered to your inbox every week.

Select a location
By signing up, you agree to our Terms of Service & Privacy Policy.


FedCon24

Required Technical and Professional Expertise

  • Experience configuring, deploying, maintaining and optimizing security code scanning tools (Fortify on Demand (FOD))
  • Experience running Dynamic and Static Application Security Testing (SAST)
  • Experience with reviewing and analyzing code scanning results and work with developers and other teams to remediate findings
  • Manage integration of FOD with the CI/CD pipeline
  • Experience supporting secure DevSecOps practices
  • Experience with the software build process
  • Perform Cyber Supply Chain Risk Management (C-SCRM) activities to include configuring, deploying and maintaining SCRM tool (Mend) and analyze reports.
  • Support Security Assessment and Authorization / ATO process
  • Certified in industry recognized areas such as CISSP, CEH, CISA, or CISM or equivalent
  • Ability to obtain and manitain a Federal security clearance

Preferred Technical and Professional Expertise

  • Experience coordinating across security, IT operations, audit, and development groups to achieve security outcomes
  • Security certification in one or more cloud environments (Azure, AWS, Google...)
  • Familiarity with NIST

Client-provided location(s): Baltimore, MD, USA; Washington, DC, USA; Research Triangle Park, Durham, NC, USA
Job ID: IBM-21225584
Employment Type: Full Time

Company Videos

Hear directly from employees about what it is like to work at IBM.

Search Additional Jobs

Security Engineer Jobs in Baltimore, MDSecurity Engineer Jobs in Washington, DCSecurity Engineer Jobs in Research Triangle Park, NCJobs in Baltimore, MDJobs in Washington, DCJobs in Research Triangle Park, NC