Werkstudent - IT Security (m/f/d)

Introduction

A career in IBM Consulting is built on long-term client relationships and close collaboration worldwide. You’ll work with leading companies across industries, helping them shape their hybrid cloud and AI journeys.

With support from our strategic partners, robust IBM technology, and Red Hat, you’ll have the tools to drive meaningful change and accelerate client impact. At IBM Consulting, curiosity fuels success.

You’ll be encouraged to challenge the norm, explore new ideas, and create innovative solutions that deliver real results.

Our culture of growth and empathy focuses on your long-term career development while valuing your unique skills and experiences.

Your Role And Responsibilities

As a Security Consultant specializing in Application Security, you will help clients understand and address application security issues, risks, and vulnerabilities.

You will provide consulting services to analyze and resolve security incidents and support clients in achieving a superior security posture.

Your Primary Responsibilities Will Include

• Assist with Security Assessments: Participate in interviews, workshops, and assessments to identify application security issues and vulnerabilities.
• Learn about Security Principles: Explore and apply security principles and knowledge of Application Security technologies, Threat models, and DevSecOps concepts to support client projects.
• Support Incident Response: Engage with clients to analyze and resolve security incidents and develop incident response plans.
• Contribute to Security Strategy: Assist in defining business drivers and developing associated App & DevSecOps security strategy, programs, and remediation recommendations.
• Observe Best Practices: Learn about and apply best practices in application security to support client projects and improve overall security posture.
  
  

Preferred Education

Bachelor's Degree

Required Technical And Professional Expertise

Exposure to Application Security:

Familiarity with application security concepts, technologies, and best practices through coursework, projects, or personal interest.

• Basic Understanding of Threat Models: Knowledge of threat modeling principles and concepts, including common threats and vulnerabilities in application security.
• Interest in DevSecOps Concepts: Awareness of DevSecOps practices and tools, including secure coding, testing, and deployment methodologies.
• Familiarity with Security Assessments: Understanding of security assessment techniques, including interviews, workshops, and vulnerability scanning.
• Curiosity about Incident Response: Basic knowledge of incident response principles, including analysis, containment, and remediation of security incidents.
  
  

Preferred Technical And Professional Experience

Familiarity with Secure Coding: Exposure to secure coding practices and tools, including secure coding methodologies and secure code review.

• Knowledge of Security Frameworks: Basic understanding of security frameworks and standards, including industry-recognized security frameworks and regulations.
• Awareness of Cloud Security: Interest in cloud security concepts, technologies, and best practices, including cloud security architecture and cloud security controls.