Security Specialist
Schaumburg , Illinois
July 06, 2017
Chief Information Security Office is working with the IBM Business Units on the identification, inventory and security controls for Source Code within IBM that is classified as Crown Jewels.  New team within IBM's Chief Information Office IT Risk (CISO) organization focused on working  to help execute security within the Business Units.

Job Duties:
  • Performing application vulnerability assessments
  • Perform Code Migration to secure repository
  • Other security-related projects that may be assigned according to skills
Minimum Requirements:
  • Experience with code repositories and code migration
  • Experience with code scanning toolsets such as Fortify and AppScan
  • Knowledge of OWASP tools and methodologies
  • Understanding of HTTP and web programming
  • Knowledge of common security requirements within ASP.NET application
  • Knowledge of standard SDLC practices
  • Minimum of 1-3 years' work experience in application security
  • Minimum of 2-4 years of IT or software development experience
Demonstrated Experience:
  • Experience working in software development
  • Experience with Application Inventory Systems
  • Experience with vulnerability scanning tools (e.g., Qualys, Nessus, Nexpose, Saint)
  • Experience with web application vulnerability scanning tools (e.g., IBM AppScan, HP Webinspect, Accunetix, NTO Spider, Burpsuite Pro)
  • Experience with static analysis tools (e.g., IBM Appscan Source, HP Fortify)


A little about us:
IBM is the world’s largest information technology company with more than 360,000 employees serving clients in 170 countries.

Know someone who would be interested in this job? Share it with your network.