Introduction
At IBM, work is more than a job - it's a calling: To build. To design. To code. To consult. To think along with clients and sell. To make markets. To invent. To collaborate. Not just to do something better, but to attempt things you've never thought possible. Are you ready to lead in this new era of technology and solve some of the world's most challenging problems? If so, lets talk.

Your Role and Responsibilities
A career in IBM is rooted in long-term relationships and close collaboration with clients and internal teams across the globe. Our people are focused on accelerating our clients' businesses through productive and secure use of our cloud services. We believe in the power of technology responsibly used to help people, partners, and the planet. Curiosity and a constant quest for knowledge serve as the foundation to success in IBM. Our culture of evolution and empathy centres on long-term career growth and development opportunities in an environment that embraces your unique skills and experience.

• Proactively address and manage third party risk assessments and security related inquiries from potential clients, partners, and existing IBM Apptio customers.
• Collaborate with Sales, Product and Engineering and other departments to address customer inquiries and annual assessments from prospects and customers.
• Assist customers with specific audit-related inquiries and assessments, gathering necessary evidence through collaboration with internal departments.
• Facilitate the completion and review of annual self-assessments such as SIG, NIST, etc., ensuring all necessary updates are made.
• Keep customer-facing security documentation up to date by ensuring timely review regarding Apptio's overall security measures.
• Exhibit exceptional teamwork, empower colleagues, foster professional development, and cultivate a positive work environment.

• Fluency in spoken and written business English
• A degree or diploma in engineering, computer science, or equivalent
• Minimum 3+ years' experience in cybersecurity and audit compliance
• CISA/CISM/CISSP (or equivalent) certification preferred.
• Compliance experience with one or more of the following Information Security frameworks and standards: ISO/IEC 27000-series, SSAE16, SOC1/2, GDPR.
• Strong knowledge of one or more of cloud platforms (AWS, Azure, and GCP)
• Excellent business English communication skills, capable of explaining complex security concepts to non-technical stakeholders.
• Ability to work independently and as part of a team, demonstrating exceptional teamwork and leadership skills.
• Strong customer service orientation, with the ability to build and maintain positive relationships with clients and stakeholders.
• Knowledge of security vulnerability management from identification to remediation

• Strong knowledge of modern tech stack and architecture
• Familiarity with Cloud architecture, DevSecOPS, SAST, DAST, and grey box testing
• Knowledge of security tools such as Scanners, Firewalls, SIEM, DLP, IDS/IPS, etc.