Information and Data are some of the most important organizational assets in today’s businesses. As a Security Consultant, you will be a key advisor for IBM’s clients, analyzing business requirements to design and implement the best security solutions for their needs. You will apply your technical skills to find the balance between enabling and securing the client's organization with the cognitive solutions that are making IBM the fastest growing enterprise security business in the world.
Your Role and Responsibilities
IBM Security is looking for IAM Security Architects (SailPoint / Saviynt) to support a variety of projects across multiple industry sectors.
Your role will be a mix of consultancy, design and delivery.
• Consider, understand and document client requirements
• Engage with other teams in IBM Security and the wider IBM , to put a value proposition to clients and help win new business;
• Deliver agreed pieces of work either as team lead or as part of a team.
Apply a consulting approach using knowledge gained from previous roles, experiences and engagements, IBM's intellectual capital, knowledge of the market/industry, and your own research to address clients IAM challenges . You will be able to apply a consulting approach using knowledge gained from previous roles, experiences and engagements, IBM's intellectual capital, knowledge of the market/industry, and your own research to address client’s security challenges.
Assist clients in developing overall Identity and Access Management (SailPoint / Saviynt) security architectures and blue prints based on IT environment and overall business, technology and security objectives at the strategic and operational level, with the ability to define the structures of solutions and architectures, will be focused on delivering a business outcome and can include systems, applications and process components.
Engage clients and work to understand their business needs, works in levels of abstraction, applies industry knowledge, and leverages appropriate business elements and information technology to address those needs. In addition, advise clients in understanding the desired future framework and work collaboratively with them to develop a roadmap to achieve this goal and become a trusted advisor.
This includes working as a team member with client personnel to identify functional and non-functional requirements and subsequently working on the identification, justification and design of the client's solution. Act as lead Security Architect where necessary to guide project teams in developing & executing on actionable roadmaps to deliver on defined architectures & blueprints.
Support the development of colleagues and pro-actively share their experience, reusable reference material and assets. They act as part of a team at all levels within IBM, taking responsibility for helping to expand the capabilities of our rapidly growing security organization. Thereby, enabling business growth beyond their immediate work on individual security opportunities.
We pride ourselves on being vendor neutral and developing solutions that are the best fit for our customers’ requirements. This means you won’t just work with IBM technology; you will work with technology from of our alliances and other vendors.
Are you passionate about keeping current and open to new ideas? To develop your knowledge, along with the cooperative nature of the team, you will be encouraged to constantly learn and improve by visiting industry events and workshops. You will also have access to the global IBM education portal which you are also encouraged to explore as we believe that education and development should not be exclusively security based. Making time to think and explore leads us to develop new ideas and to be better able to help our clients. We are focused on developing talent and industry leading skills. IBM believes in career growth and flexibility. If your desire is to help empower people with unmatched security while working in a supportive and engaging environment, your career and your future will be made with IBM.
Projects are based across the US , often on client premises . The expectation of team members is that they will travel to support clients on site. All permanent IBM employees have the opportunity to apply to work flexibly under the IBM Flexible Working Policy. Any flexibility is subject to prior management approval in line with business needs.
Responsible for managing all the activities related to delivering a security led IAM solution for the duration of their engagement, including but not limited to:
Leadership - managing all aspects of the solution, the technical team, managing client requirements and linking those requirements to IBM's solution
Create architectural designs that translate into solution requirements
Creating & delivering the solution element of security proposals, this could be administrative, operational, technical or physical
Cost solutioning - ensure all elements of cost are accurately reflected in the solution, and relevant backup documentation is available
Assisting Sales with responding to requests for proposals and plan the strategy for a given client
Defining and creating a solution that meets the client’s requirements, is deliverable and commercially viable
Responsible for ensuring the solution links to the cost case - proposal and contract
Understanding the Risk Posture of the client, including their drivers and apatite, legal, regulatory and compliance drivers for the client
Understanding the functional and non-functional requirements of the system
Refining the Security architecture to support the functional design.
Experience delivering architectures for at least two of the following IAM Domains :
Identity ( SailPoint/Saviynt): life-cycle, provisioning/provisioning, workflow automation, delegated administration, password synchronization, self-service, Role Based Access Control, related business and security standards, policies processes and procedures. Operating System, Application and Web Application Access controls and methods. End Point Integration.
Privileged Access Management ( CyberArk): Vaulting, Session Recording, Access Controls methods such as Sudo. Hard coded password approaches, Operating System, Database, Application integration and methods. Related business and security standards, policies processes and procedures
Required Technical and Professional Expertise
5 year of experience in Cloud Native IAM: Azure, AWS or others.
5 year of experience in Web Access Management ; Single-Sign-on, Access Federation, Privileged Access Management, Desktop Single Sign-on, Advanced and Multi Factor Authorization, RBAC/ABAC, Application Integration.
5 year of experience in Directory Services ; LDAP, Active Directory, Azure, Integration, replication/synchronization,
5 year of experience in Other ; Desktop Single Sign-on, API / Rest / XML, RACF, ADFS, Multi-Factor Authentication, Mobile
5 year of experience working with at least two of the following IAM Technologies: SailPoint, Saviynt, CyberArk, Okta, Thycotic, Azure, MIM, ISIGI, ISIM, CI, ISAM, ISSS, BeyondTrust, OneIdentity, RSA, AAD, AWS native IAM.
Preferred Technical and Professional Expertise
While not prerequisites, the following will be advantageous:
Proposal & Solution shaping & development
Stakeholder and scope management
Presentation skills for C-Level clients
Assessment, Strategy and roadmap development
Awareness of penetration testing methods and technologies
A recognized certification in security appropriate to the role for example: CISSP, CISMP, CompTIA Security +, ITIL qualification etc.
About Business Unit
IBM’s Cloud and Cognitive software business is committed to bringing the power of IBM’s Cloud and Watson/AI technologies to life for our clients and ecosystem partners around the world. IBM provides you with the most comprehensive and consistent approach to development, security and operations across hybrid environments—with complete software solutions for business and IT operations, development, data science, security, and management. Our experts and software capabilities help organizations develop applications once and deploy them anywhere, integrate security across the breadth of their IT estate, and automate operations with management visibility. With IBM, you also have access to new skills and methods, governance and management approaches, and a deep ecosystem of industry experts and partners.
Your Life @ IBM
What matters to you when you’re looking for your next career challenge?
Maybe you want to get involved in work that really changes the world? What about somewhere with incredible and diverse career and development opportunities – where you can truly discover your passion? Are you looking for a culture of openness, collaboration and trust – where everyone has a voice? What about all of these? If so, then IBM could be your next career challenge. Join us, not to do something better, but to attempt things you never thought possible.
Impact. Inclusion. Infinite Experiences. Do your best work ever.
IBM’s greatest invention is the IBMer. We believe that progress is made through progressive thinking, progressive leadership, progressive policy and progressive action. IBMers believe that the application of intelligence, reason and science can improve business, society and the human condition. Restlessly reinventing since 1911, we are the largest technology and consulting employer in the world, with more than 380,000 IBMers serving clients in 170 countries.
For additional information about location requirements, please discuss with the recruiter following submission of your application.
IBM intends this job to be performed entirely outside of Colorado.
Being You @ IBM
IBM is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, pregnancy, disability, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.