**Introduction** At IBM, work is more than a job - it's a calling: To build. To design. To code. To consult. To think along with clients and sell. To make markets. To invent. To collaborate. Not just to do something better, but to attempt things you've never thought possible. Are you ready to lead in this new era of technology and solve some of the world's most challenging problems? If so, lets talk. **Your role and responsibilities** A career in IBM Software means you’ll be part of a team that transforms our customer’s challenges into solutions. Seeking new possibilities and always staying curious, we are a team dedicated to creating the world’s leading AI-powered, cloud-native software solutions for our customers. Our renowned legacy creates endless global opportunities for our IBMers, so the door is always open for those who want to grow their career. IBM’s product and technology landscape includes Research, Software, and Infrastructure. Entering this domain positions you at the heart of IBM, where growth and innovation thrive. We're looking for a Security Architect to join the IBM webMethods security team. As a Security Architect you will apply your knowledge of Essential Cybersecurity Controls (ECC) and the Cloud Cybersecurity Controls (CCC) in support of hosting and operating our software platforms in designated regions, making them both secure and compliant with the local requirements. Your primary responsibilities include: • Develop a complete understanding of webmethod products and technology • Align organizational security strategy with overall business strategy • Identify and comminate current and emerging security threats • Design security architecture elements to mitigate security threats • Perform or supervise vulnerability testing, risk analyses, and security assessments • Identify security design gaps in existing and proposed architectures and recommend changes or enhancements • Guide security team • Effectively collaborate with corporate security teams and application development teams • Responds to and investigates security incidents and provides thorough post-event analyses • Identify security design gaps in existing and proposed architectures and recommend changes or enhancements • Evaluate and recommend security tools and best practices • Updates job knowledge by tracking and understanding emerging security practices and standards, participating in educational opportunities, reading professional publications, and participating in professional organizations **Required technical and professional expertise** • Thorough knowledge of relevant industry security standards, including ISO27001, NIST, and SOC • Advanced understanding of security protocols, cryptography, and security • Prior experience and thorough understanding of AWS and Azure architecture • Prior experience with feature development within a cloud environment • Prior experience handling design reviews is a plus • Prior experience in FedRAMP authorization is required **Preferred technical and professional experience** • Obtained cyber security certification like CISSP, CISA and CISM • Obtained AWS/Azure Security certification • Risk assessment procedures, policy formation, role-based authorization methodologies, authentication technologies, and security attack pathologies