IBM Security Architect in RESEARCH TRIANGLE PARK, North Carolina

Job Description

Job Role: Security Architect

Location: Research Triangle Park, NC

Enjoy challenges? Big challenges? Come work for the office of the IBM Chief Information Security Officer and help meet the global challenges of keeping one of the largest companies in the world secure. We’re looking for enthusiastic and innovative team members to join us in several application and developer-centric security roles at our location in Research Triangle Park, NC.

Position Summary:

This squad is responsible for piloting, deploying, integrating, operating and supporting developer-centric security services provided to internal development teams.

This application security architect role includes all aspects of the squad mission but primarily focuses on ensuring that the tooling, architecture and deployment of our security services meet business needs, security requirements, and provide appropriate integration capabilities.

This role will also be involved with setting up environments and toolchains to perform, validate, document and demonstrate proof of concept integrations of security tooling and process.

Essential Job Duties:

  • Focus on selecting, architecting and implementing security services to ensure the services meet business needs, are well integrated into the software lifecycle, and meet security and compliance requirements.

  • Contribute to the day-to-day development, implementation, monitoring and operational support of managed solutions and service provider relationships.

  • Engage in information security projects that evaluate existing security services and propose modifications and additional services and capabilities to meet any gaps identified.

  • Resolve or escalate issues impacting security services and service adoption

  • Proactively identify areas for improvement and develop plans to address

  • Assist in the creation of metrics for measuring service success and business value

  • Perform other duties as assigned.


  • Working knowledge of Linux, UNIX and Windows or OSX.

  • Prefer certifications such as CISSP, CSSLP or similar

  • Ability to speak and write well.

  • Track record of acting with integrity, taking pride in work, seeking to excel, self-motivation, being curious and adaptable, mentorship and communicating effectively.

Required Technical and Professional Expertise

  • 7+ years of security experience with particular focus on application security and web application security. Areas such as OWASP Top 10, CWE/SANS Top 25, secure SLDC, etc.

  • 7+ years of experience with Internet and web technologies and associated security technology. Areas such as HTTP, TLS, DNS, REST, TCP/IP, WAF, SAST, DAST, etc.

Preferred Tech and Prof Experience

  • Development or scripting experience strongly preferred

  • Familiarity with cloud computing technologies, such as software, infrastructure and platform-as-a-service, containers and serverless.

  • Familiarity with SCM tools (git), CI/CD tools (Travis, Jenkins, etc.), CM tools (Puppet, Chef, etc.), testing tools and similar.

  • Experience working on Agile teams

  • Experience with cloud and DevOps related tooling preferred

EO Statement

IBM is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.