Introduction

At IBM, work is more than a job - it's a calling: To build. To design. To code. To consult. To think along with clients and sell. To make markets. To invent. To collaborate. Not just to do something better, but to attempt things you've never thought possible. Are you ready to lead in this new era of technology and solve some of the world's most challenging problems? If so, let's talk.

Your role and responsibilities
The IBM Cloud Platform Security team is looking for a talented, innovative and enthusiastic technical professional that will support and improve our security posture to ensure our customers succeed. IBM Cloud Platform Security has a global cloud presence that continues to grow and expand its reach. Our security team is responsible for maintaining Security at scale for all IBM Cloud platform services.As a trusted platform, first-rate security, fail-safe reliability and exceptional quality is of the utmost importance.As an IBM Cloud Platform Security Specialist, you will ensure a risk-free, continuously compliant environment for our customers. Bringing a unique blend of knowledge and skills in both security and technology systems, you will play a key role in analyzing business needs, identifying and solving problems, advising and designing automated solutions, developing and testing new processes and procedures, and maintaining well-documented information systems.

You will work in an agile, collaborative environment to build, configure, maintain and operate both knowledge and processes systems for IBM Cloud.Working closely with our worldwide teams, you will have a unique opportunity to gain first-hand experience with the latest technologies and be supported by a global team of IBMers to grow your own technical skills and develop your career.

Key Responsibilities:

.Design and harden controls across the Kubernetes/OpenShift ecosystem; secure system configurations ensuring logical and physical isolation of environments.

.Workload & Supply Chain: Build/operate image scanning & signing, SBOM workflows, and provenance checks across CI/CD.

.Detection & Response: Deploy/runtime detection tooling, threat modelling, playbooks, and hands‑on incident response.

.Identity & Secrets: Engineer robust RBAC/IAM/OIDC patterns and secrets management.

.DevSecOps: policy‑as‑code, CI/CD guardrails, and Secure Development Lifecycle (SDLC).

.Compliance & Audit: Map controls to CIS Benchmarks, NIST/ISO/SOC 2/PCI; perform audit readiness and control validation

Required education
Bachelor's Degree

Preferred education
Master's Degree

Required technical and professional expertise

.Platform Security: Assist in the design of controls across the Kubernetes/OpenShift ecosystem; secure system configurations ensuring logical and physical isolation of environments.

.Workload & Supply Chain: Review implementation of image scanning & signing, and provenance checks across CI/CD.

.Detection & Response: threat modelling, playbooks, and hands‑on incident response.

.Identity & Secrets: Assist with the design/implementation of RBAC/IAM/OIDC patterns and secrets management.

.DevSecOps Guidance: policy‑as‑code, CI/CD guardrails, and Secure Development Lifecycle (SDLC).

.Compliance & Audit: Map controls to implementations, NIST/ISO/SOC 2/PCI; perform audit readiness and control validation.

Preferred technical and professional experience

.A strong technical background ideally one of these disciplines: Software Development, Network Engineering, Technical Support or another adjacent field.

.Kubernetes & Linux security: Namespaces/cgroups, seccomp, AppArmor/SELinux; cluster hardening and workload isolation.

.CI/CD & code: GitHub experience; scripting with Python and/or Golang; integrating scanners/signing/policy into pipelines.

.IAM & secrets: RBAC, service accounts, workload identity, secret rotation.

.Detection/IR: Familiarity with runtime detection, log triage, and incident response workflows.

.Compliance experience: CIS Benchmark experience; exposure to NIST/ISO/SOC2/PCI and audit evidence practices.

Years of Experience:
5-8