Security Consultant-Infrastructure Security

Overview

A career in IBM Consulting is built on long-term client relationships and close collaboration worldwide. You’ll work with leading companies across industries, helping them shape their hybrid cloud and AI journeys. With support from our strategic partners, robust IBM technology, and Red Hat, you’ll have the tools to drive meaningful change and accelerate client impact. At IBM Consulting, curiosity fuels success. You’ll be encouraged to challenge the norm, explore new ideas, and create innovative solutions that deliver real results. Our culture of growth and empathy focuses on your long-term career development while valuing your unique skills and experiences.

Key Responsibilities

Your role and responsibilities

• Security Architecture & Design
• Design and implement enterprise network security architectures (On-prem, Cloud, Hybrid).
• Develop secure network segmentation strategies and Zero Trust frameworks.
• Define firewall policies, IPS rules, VPN configurations, and secure connectivity models.
• Contribute to high-level and low-level design documentation (HLD/LLD).
• Implementation & Operations
• Deploy and manage next-generation firewalls (NGFW), IDS/IPS, WAF, Proxy, NAC solutions.
• Lead complex migrations, firewall rule optimization, and security upgrades.
• Perform configuration reviews and ensure adherence to security best practices.
• Handle critical incident troubleshooting and root cause analysis (RCA).
• Governance & Compliance
• Ensure compliance with ISO 27001, NIST, PCI-DSS, and client-specific standards.
• Support audit readiness and regulatory reporting requirements.
• Conduct risk assessments and security posture reviews.
• Stakeholder & Client Management
• Act as technical SME for client engagements.
• Participate in client governance meetings and security reviews.
• Provide technical advisory and solution recommendations.
• Team Leadership
• Mentor L2/L3 engineers.
• Support capability development and knowledge management initiatives.
• Contribute to presales solutioning and effort estimation.
  
  

Bachelor's Degree

Required Technical And Professional Expertise

• Strong hands-on experience in:
• Check Point, Palo Alto, Fortinet, Cisco ASA/FTD
• VPN technologies (IPSec, SSL VPN, Site-to-Site)
• IDS/IPS and Threat Prevention
• Network segmentation and DMZ architecture
• Cisco ISE
• Web Application Firewall
• Strong knowledge of TCP/IP, routing & switching concepts.
• Experience in cloud security (AWS/Azure network security controls).
  

• Next-Generation Firewall policy review & threat logs.
• IDS/IPS tuning and anomaly detection.
• PCAP traffic analysis (Wireshark).
• DNS attack detection.
• DDoS attack monitoring & mitigation strategy.
• NAC (CiscoISE, Forescout)
• OEM experience preferred:
  
  

Palo Alto Networks

Fortinet

Cisco

• Relevant certifications preferred:
  
  

CCNP Security

PCNSE / CCSA / CCSE