Jobs for People with MS: National MS Society

Introduction

Since our founding, IBMers have been driven by a singular purpose. Making an impact on each other, our clients, and the world, we strive to Be Essential. By developing trust and personal responsibility in all relationships IBMers around the world have focused on innovation that matters to the world and have dedicated themselves to every client's success by focusing and believing in our core values.

IBM is seeking a qualified Penetration Tester to join its collaborative and energetic Red Team. This position will reside in the IBM Public Cloud organization providing penetration testing services and performing red team assessments against IBM Public Cloud offerings. IBM Public Cloud serves hundreds of clients every day to drive their success in both the Federal and Commercial sectors.

As a Penetration Tester, you will work closely with multiple departments, including development, architecture, and compliance, to perform security testing against various system(s) and application(s). You will assist in the development and planning of remediation strategies to mitigate identified risks and vulnerabilities.

Your Role and Responsibilities

• Develop a deep technical understanding of IBM Public Cloud offerings and infrastructure

• Plan and perform red team exercises against various cloud offerings

• Plan and perform full stack security tests against various system(s) and application(s) independently as well as within a team

• Engage in security monitoring and visibility improvement activities across the IBM Public Cloud organization

• Thoroughly document techniques, tactics, and proof of concepts used during security testing and red team exercises

• Research and continuously improve skills in attacker tools, methods, and techniques

• Lead by example for the greater red team in professionalism, communication, and technical expertise

Required Technical and Professional Expertise

• 3+ years of demonstrating experience in planning and executing penetration tests/red team exercises against web applications, containers, APIs, network devices, databases, operating systems, and various cloud technologies

• Demonstrates strong understanding of offensive cybersecurity operations and defensive integrations, including enumeration and exploitation of various cloud-based technologies and development of secure applications.

• Demonstrates strong ability to communicate highly technical aspects to Executives and IT staffs, respectively

• Demonstrates ability by creating custom tools for penetration testing and contributing to opensource technologies

• Demonstrates strong experience with various scripting languages (Python, Ruby, Bash, etc.)

• Nice to Possess one or more of the following credentials: CEH, eJpt, OSCP, OSCE, OSWE, GWAPT, GPEN, GXPN, CRTP, Crest Penetration Certification.

• Familiarity with serverless services, containerization and other cloud technologies

• Strong familiarity with OWASP Top Ten, NIST, and MITRE ATT&CK

• 3+ years of demonstrating experience in system or application administration role(s)

Preferred Technical and Professional Expertise

• 3+ years of demonstrating experience in planning and executing penetration tests/red team exercises against web applications, containers, APIs, network devices, databases, operating systems, and various cloud technologies

• Understanding of offensive cybersecurity operations and defensive integrations, including enumeration and exploitation of various cloud-based technologies and development of secure applications.

• Expertise in developing exploits and customized attack tooling and approaches

• Demonstrated security research leading to bug bounty and CVE awards

• Deep understanding of serverless services, containerization and other cloud

• technologies

• Demonstrates strong experience with various scripting languages (Python, Ruby, Bash, etc.)

• Good to have one or more of the following credentials: CEH, eJPT, OSCP, OSCE, OSWE, GWAPT, GPEN, GXPN, CRTP, Crest Penetration Certification.

• Familiarity with serverless services, containerization and other cloud technologies

• Strong familiarity with OWASP Top Ten, NIST, and MITRE ATT&CK

• 3+ years of demonstrating experience in system or application administration role(s)

About Business UnitIBM Systems helps IT leaders think differently about their infrastructure. IBM servers and storage are no longer inanimate - they can understand, reason, and learn so our clients can innovate while avoiding IT issues. Our systems power the world's most important industries and our clients are the architects of the future. Join us to help build our leading-edge technology portfolio designed for cognitive business and optimized for cloud computing.

This job requires you to be fully COVID-19 vaccinated prior to your start date and proof of vaccination status will be required before your start date. During the Onboarding process you will be asked to confirm your vaccination status, in case you are unable to get vaccinated for any reason, you can let us know at that stage. Please let us know if you are unable to be vaccinated due to medical or religious reasons. IBM will consider such requests on a case by case basis subject to submission of required proof by the candidate before a stipulated date.

Your Life @ IBMIn a world where technology never stands still, we understand that, dedication to our clients success, innovation that matters, and trust and personal responsibility in all our relationships, lives in what we do as IBMers as we strive to be the catalyst that makes the world work better.

Being an IBMer means you'll be able to learn and develop yourself and your career, you'll be encouraged to be courageous and experiment everyday, all whilst having continuous trust and support in an environment where everyone can thrive whatever their personal or professional background.

Our IBMers are growth minded, always staying curious, open to feedback and learning new information and skills to constantly transform themselves and our company. They are trusted to provide on-going feedback to help other IBMers grow, as well as collaborate with colleagues keeping in mind a team focused approach to include different perspectives to drive exceptional outcomes for our customers. The courage our IBMers have to make critical decisions everyday is essential to IBM becoming the catalyst for progress, always embracing challenges with resources they have to hand, a can-do attitude and always striving for an outcome focused approach within everything that they do.

Are you ready to be an IBMer?

About IBMIBM's greatest invention is the IBMer. We believe that through the application of intelligence, reason and science, we can improve business, society and the human condition, bringing the power of an open hybrid cloud and AI strategy to life for our clients and partners around the world.Restlessly reinventing since 1911, we are not only one of the largest corporate organizations in the world, we're also one of the biggest technology and consulting employers, with many of the Fortune 50 companies relying on the IBM Cloud to run their business. At IBM, we pride ourselves on being an early adopter of artificial intelligence, quantum computing and blockchain. Now it's time for you to join us on our journey to being a responsible technology innovator and a force for good in the world.

Location StatementWhen applying to jobs of your interest, we recommend that you do so for those that match your experience and expertise. Our recruiters advise that you apply to not more than 3 roles in a year for the best candidate experience.

For additional information about location requirements, please discuss with the recruiter following submission of your application.

Being You @ IBMIBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.