Job Openings at IBM

In this role, you'll work in one of our IBM Consulting Client Innovation Centers (Delivery Centers), where we deliver deep technical and industry expertise to a wide range of public and private sector clients around the world. Our delivery centers offer our clients locally based skills and technical expertise to drive innovation and adoption of new technology.

Your role and responsibilities

• We are excited to offer a Content Designer position with the opportunity to work on impactful projects for IBM and clients in the health sector. This role focuses on understanding user needs and shaping clear, accessible, and effective content across all user touchpoints, including internal audiences and non-digital channels. It is ideal for recent graduates or early‑career professionals eager to gain hands-on experience in content design.

Responsibilities

• Collaborate with colleagues to plan and support workshops that help teams understand user needs and the role content plays in the overall user experience, including in complex health-sector environments.
• Work closely with user researchers to interpret and communicate research insights, ensuring content decisions are grounded in evidence and aligned with the strategic priorities of IBM and its clients.
• Help create a shared understanding of the end-to-end user experience by identifying content gaps, pain points, and opportunities across different channels.
• Produce content artefacts such as user journeys, content maps, message hierarchies, and early-stage content drafts to frame problems and guide content strategy.
• Create and iterate on content prototypes using the most appropriate methods for each scenario, validating with users where possible.
• Define success measures for content, including usability, clarity, and organisational goals, to ensure content delivers positive outcomes for both users and the business.

Required education

• None

Preferred education

• Bachelor's Degree
• Required technical and professional expertise
• Excellent communication and interpersonal skills.
• Ability to work well in a team and adapt to changing priorities.
• Bachelor's degree in Design, Human‑Computer Interaction, English, Communications, or a related field.

To stand out, experience with user research methods and tools, familiarity with content design frameworks, knowledge of UX writing and accessibility principles, and experience with content‑creation or prototyping tools would be advantageous. Above all, a passion for clear, user‑centred content and continuous improvement is essential.

This role is subject to pre-employment screening in line with the UK Government’s Baseline Personnel Security Standard (BPSS). An additional range of Personal Security Controls referred to as National Security Vetting (NVS) may apply, this could include meeting the eligibility requirements for The Security Check (SC) or Developed Vetting (DV).

• Preferred technical and professional experience
• Experience with user research methods and tools.
• Familiarity with content design frameworks and approaches such as the GOV.UK content design process, content lifecycle models, and evidence‑based content creation.
• Knowledge of UX writing, accessibility standards, and inclusive content practices.
• Experience with modern content and collaboration tools such as Figma, FigJam, Miro, Google Workspace, Notion, and content prototyping tools.
• Passion for user‑centred content and continuous improvement.

go to method of application »

In this role, you'll work in one of our IBM Consulting Client Innovation Centers (Delivery Centers), where we deliver deep technical and industry expertise to a wide range of public and private sector clients around the world. Our delivery centers offer our clients locally based skills and technical expertise to drive innovation and adoption of new technology.

Your role and responsibilities
As a Cyber Security Consultant specialising in Threat Management, you will strengthen clients’ detection, response, and security operations capabilities across cloud, hybrid, and on-premise environments. You will design and uplift SIEM, logging, and threat detection architectures, build and tune analytics rules, integrate diverse log sources, and enable automated investigation and response workflows.

Key Responsibilities:

• Design, build, and uplift SIEM architectures, including log ingestion, parsing, normalization, enrichment, and use-case development.
• Develop, tune, and optimize detection analytics, improving signal fidelity and reducing false positives across diverse environments.
• Integrate cloud, on-prem, and SaaS log sources (e.g., Azure, AWS, EDR, identity, network, application telemetry) into unified monitoring platforms.
• Lead SOC uplift engagements, including capability assessments, detection maturity reviews, and roadmap development.
• Build and refine automated workflows and playbooks using SOAR tooling to improve investigation and response efficiency.
• Conduct threat hunting and proactive detection exercises, aligned to MITRE ATT&CK and client threat profiles.
• Advise on operational processes, including incident response, escalation pathways, runbooks, SLAs, and KPI/OKR design.
• Develop detection engineering standards, including naming conventions, alert lifecycle, and correlation logic patterns.
• Troubleshoot complex SIEM/SOC issues, including rule misfires, ingestion failures, misconfigured integrations, and analytic gaps.
• Deliver workshops and stakeholder briefings, translating technical detection and operational insights into business-focused recommendations.

Required education

• None

Preferred education

• Bachelor's Degree

Required technical and professional expertise

• Hands-on experience with major SIEM platforms, such as Microsoft Sentinel, Splunk, LogRhythm, QRadar, Elastic, or similar.
• Strong detection engineering experience, including analytic rule creation, KQL/SPL/detection logic, alert tuning, and correlation design.
• Ability to onboard and normalize log sources across cloud (Azure/AWS), identity, EDR/XDR, network, firewall, application, and SaaS systems.
• Working knowledge of MITRE ATT&CK, detection coverage mapping, and threat-informed defence principles.
• Experience with SOAR platforms (e.g., Sentinel automation, Splunk SOAR, Cortex XSOAR, Siemplify) and building automated response playbooks.
• Understanding of EDR/XDR technologies, endpoint telemetry, and detection patterns.
• Experience with incident response processes, triage, investigation workflows, escalation paths, containment, and recovery actions.
• Ability to produce high-quality HLDs/LLDs, runbooks, detection standards, and SOC procedures.
• Proficiency in query and scripting languages relevant to detection engineering (KQL/SPL/SQL/Python/PowerShell).
• Consulting experience, including stakeholder management, delivery ownership, and presenting operational findings.

This role requires eligibility for UK Government security clearance. Candidates who already hold clearance (SC or DV) are encouraged to apply, but we will fully consider applicants who meet the eligibility criteria and can obtain clearance.

Preferred technical and professional experience

• Relevant certifications such as SC-200, AZ-500, GCDA, GCIA, GCIH, Splunk Enterprise Security, or vendor-specific SIEM accreditations.
• Experience leading SOC maturity assessments or building SOC capability uplift roadmaps.
• Experience with EDR/XDR advanced features, detection logic tuning, and behavioral analytics.
• Familiarity with cloud-native detection engines (e.g., AWS GuardDuty, Security Hub, CloudTrail analytics, GCP SCC).
• Understanding of log ingestion architectures, data retention, EPS sizing, ingestion cost optimization, and schema standardization.
• Exposure to threat intelligence integration, enrichment pipelines, and TI-driven detection logic.
• Experience working in or alongside SOC L2/L3 teams, including content development and continuous improvement cycles.
• Understanding of regulatory or compliance-driven environments, such as public sector, finance, or critical national infrastructure.
• Knowledge of Zero Trust architectures and identity-centric detection strategies.
• Experience contributing to or overseeing SOC transitions, including outsourcing/insourcing, MSSP coordination, or tooling migration.

go to method of application »

In this role, you'll work in one of our IBM Consulting Client Innovation Centers (Delivery Centers), where we deliver deep technical and industry expertise to a wide range of public and private sector clients around the world. Our delivery centers offer our clients locally based skills and technical expertise to drive innovation and adoption of new technology.

Your role and responsibilities

• As a Security Consultant specializing in Identity & Access Management (IAM), you will design, build, and modernise enterprise identity foundations that enable secure, seamless access across complex environments. 
• You will work hands-on with leading IAM platforms to implement authentication, authorization, lifecycle automation, and identity governance at scale. By applying standards and protocols such as SAML, OAuth, OpenID Connect, and SCIM - as well as scripting and automation to support large multi-cloud estates - you will strengthen access controls, reduce risk, and streamline user journeys across cloud, on-prem, and hybrid platforms.

This is a technical, client-facing consulting role that requires translating identity requirements into scalable, secure, business-aligned solutions.

Key Responsibilities:

• Design and implement IAM solutions across cloud and on-prem environments using platforms such as Azure AD/Entra ID, Okta, Ping, SailPoint, Saviynt, or similar.
• Lead end-to-end identity lifecycle projects, including provisioning, de-provisioning, workflow automation, and access governance setup.
• Develop secure authentication and authorization patterns using SAML, OAuth, OpenID Connect, SCIM, and Zero Trust principles.
• Create and enforce RBAC, ABAC, and least-privilege access models to strengthen security posture and simplify access management.
• Integrate IAM controls into enterprise platforms, applications, APIs, and CI/CD pipelines, ensuring seamless user access and strong security boundaries.
• Automate IAM operations through scripting and tooling (e.g., PowerShell, Python, Terraform) to improve efficiency, consistency, and compliance.
• Conduct IAM assessments and identity posture reviews, providing actionable recommendations aligned with regulatory frameworks and client requirements.
• Troubleshoot complex identity issues across authentication, federation, directory services, and cross-platform access scenarios.
• Collaborate with engineering, security, and architecture teams to embed secure-by-design identity controls into new and existing services.
• Deliver client-facing workshops and documentation, translating identity requirements and technical design decisions into clear, business-aligned outcomes.

Required education

• None

Preferred education

• Bachelor's Degree

Required technical and professional expertise

• Hands-on experience with at least one major IAM platform, such as Azure AD/Entra ID, Okta, Ping Identity, SailPoint, Saviynt, CyberArk, or equivalent.
• Strong understanding of IAM fundamentals, including authentication, authorization, identity lifecycle management, access governance, and federation.
• Deep knowledge of identity standards and protocols, including SAML 2.0, OAuth 2.0, OpenID Connect (OIDC), SCIM, LDAP, Kerberos, and MFA patterns.
• Practical experience designing and implementing IAM controls across cloud (Azure/AWS/GCP), hybrid, and on-premise environments.
• Ability to build and automate IAM processes using scripting or automation tools (PowerShell, Python, Terraform, or similar).
• Experience delivering Role-Based Access Control (RBAC), Attribute-Based Access Control (ABAC), least-privilege models, and access review processes.
• Hands-on experience integrating IAM with enterprise applications, SaaS platforms, APIs, directories, and CI/CD or DevOps workflows.
• Strong understanding of Zero Trust principles, particularly identity-centric access patterns.
• Experience conducting IAM assessments and producing recommendations aligned to industry frameworks and regulatory requirements.
• Proven consulting experience, including client-facing delivery, stakeholder engagement, and the ability to translate identity requirements into technical solutions.

This role requires eligibility for UK Government security clearance. Candidates with existing clearance (SC or DV) are encouraged to apply, but those who meet the baseline eligibility criteria and can obtain clearance will also be fully considered.

Preferred Professional

Preferred technical and professional experience

• Microsoft: SC-300 (Identity & Access Administrator), AZ-500, SC-100
• IAM platforms: Okta Professional/Administrator, Ping Identity, SailPoint, Saviynt
• Security: CISSP, CCSP, or relevant practitioner-level credentials
• Experience implementing or supporting Identity Governance & Administration (IGA) tooling, including access reviews, SoD policies, or recertification processes.
• Familiarity with Privileged Access Management (PAM) solutions (e.g., CyberArk, Delinea, BeyondTrust) and their integration into broader identity workflows.
• Experience designing Zero Trust architectures where identity acts as the primary control plane, including device trust and conditional access policies.
• Hands-on experience integrating IAM with API gateways, custom applications, microservices, or serverless architectures.
• Exposure to multi-cloud IAM patterns, including AWS IAM roles/policies, GCP IAM, workload identity federation, permissions boundaries, and SCPs.
• Demonstrated ability to deliver client-facing workshops, discovery sessions, and architectural recommendations in a consulting context.
• Experience supporting or leading IAM delivery within regulated or compliance-driven environments (e.g., ISO 27001, NIST CSF, CIS, GDPR).
• Familiarity with IAM considerations in OT, IoT, or hybrid environments, such as legacy directory integration or constrained protocol support.
• Ability to produce high-quality design documentation, HLDs/LLDs, standards, and operational runbooks for identity solutions.
• Experience with automation pipelines, policy-as-code, or CI/CD integration for identity deployments.
• Understanding of threat modelling and secure design as applied to authentication flows, session management, and identity-centric attack paths.

go to method of application »

Your role and responsibilities

• The Field CTO role is a high-impact position passionate about executive-level engagement, field enablement, and strategic product feedback. As a Field CTO, you act as an extension of the CTO and CEO to strategically enable and support sales teams by building pipelines, closing opportunities, and maintaining long-term relationships with customer leadership teams. You are a trusted advisor to our customers, providing business, technical, and organizational guidance and thought leadership to drive customer outcomes. You work closely with regional sales leadership to focus on top-priority accounts within the theater with significant pipeline impact. As the technical leader and executive sponsor for key accounts, you deeply understand the customer's technical landscape and can articulate how HashiCorp's products drive their business success. You also broadly influence the strategic direction for customer messaging through collaboration with the Strategy team, R&D, the broader field, and industry events. You are a trusted advisor to our customers, providing business, technical, and thought leadership to drive adoption and success with our products.
• Illustrating the impact of the HashiCorp product suite in delivering customer outcomes is your strength, and you showcase your thought leadership and technical expertise through participation in webinars, speaking events, round tables, white papers, marketing events, advisory boards, and executive briefings. Dynamic communication and presentation skills amongst varied audiences of both business and technology leaders are essential for success in this role, and you should be as adept at engaging with the customer’s C-level executives as you are working closely with internal product and engineering teams.
• As Field CTO, you contribute to public and internal messaging of the HashiCorp principles and tech vision to existing and potential customer executives and decision-makers and enable internal teams and partners to elevate the product narrative. A HashiCorp FCTO is regarded as a business and technical thought leader and a well-rounded technologist in the IT/application operations landscape.

What you’ll do

• Work closely with field marketing teams to spread awareness and support pipeline building via customer touch points (round tables, workshops, etc), conferences, strategic events, blogs, webinars, and whitepapers, among other opportunities.  
• Aggregate and synthesize customer feedback on product messaging, pricing, and capabilities and communicate those findings to the relevant internal organizations (sales, marketing, R&D, enablement, services).
• Coordinate with the regional sales team to establish relevant relationships and act as a technical lead and trusted advisor to accelerate the pipeline for strategic accounts.
• Understand the customer's technical, people, and process needs, and articulate how HashiCorp's products can meet those needs for the enterprise.
• Work closely with the field teams to identify opportunities for product adoption, expansion, and extension within their accounts, to communicate a unified vision, and to collaborate through thought leadership.
• Collaborate with product and marketing teams to provide feedback on customer needs and struggles to ensure our products' proper future direction and success.
• Drive customer CISO/CxO engagements with the field teams.
• Validate and contribute to technical materials, standard methodologies, etc., based on field experience to continuously up-level and enable our internal partners.
• Lead executive briefings and advisory boards with customers, partners, and prospects.
• Educate, mentor, and promote up-skilling within the sales and customer success teams on HashiCorp's products through internal enablement efforts.

Required education

• Bachelor's Degree

Preferred education

• Master's Degree

Required technical and professional expertise

• Fluent in English
• You must have an Engineering/CS/MIS Bachelor’s Degree, a military leadership position, or 10+ years of relevant proven experience
• Have a history of executive engagement or served at an executive level
• Enjoy speaking in front of crowds, from small to very large, virtually
• Are a well-rounded SME with technical depth in cloud automation, DevOps, and security
• Have recent industry experience and deep technical background in DevOps & infrastructure automation tooling
• Have a high-level understanding of the design principles for distributed computing architectures
• Have the ability to interact with and influence business decision-makers (CxO) and technical decision-makers within the Global 2000
• Have experience leading or selling to large enterprise environments
• Can understand and communicate the value proposition of strategic and tactical solutions for complex enterprise use cases
• Can participate in dynamic conversations around sales mechanics that will enable you to influence key stakeholders positively
• Have the ability to act as an industry inspiring leader in both customer meetings and public settings
• Excel at staying close to industry trends to gain a deeper product understanding
• Have strong verbal, written, visual communication, and presentation skills, particularly in ad-hoc situations (comfortable on a whiteboard)
• Your are willing and have the ability to travel up to 50%
• Preferred technical and professional experience
• Any other European language is an advantage, specifically a Nordic language