**Introduction** At IBM Infrastructure & Technology, we design and operate the systems that keep the world running. From high-resiliency mainframes and hybrid cloud platforms to networking, automation, and site reliability. Our teams ensure the performance, security, and scalability that clients and industries depend on every day. Working in Infrastructure & Technology means tackling complex challenges with curiosity and collaboration. You’ll work with diverse technologies and colleagues worldwide to deliver resilient, future-ready solutions that power innovation. With continuous learning, career growth, and a supportive culture, IBM provides the opportunities to build expertise and shape the infrastructure that drives progress. **Your Role And Responsibilities** IBM Cloud Code Engine Security and Compliance member is the primary contact person within a Development Operations (DevOps) team with a specific responsibility for driving security awareness, training and best practice within their team and who is ultimately responsible for Compliance activities. Security is something that every DevOps team needs to incorporate into every phase of their product development life cycle. Compliance goals must also be taken into account, including gap analysis, readiness testing, internal/external audits, business controls, and external certifications (i.e., ISO/SOCx/ProtectedB/PCI/Meity, etc.) - Ensures engagement of Development Operations (DevOps) team in their implementation of security/compliance policies. - Implement observability (metrics, logging, tracing) to ensure reliable evidence automation systems. - Collaborate with platform, security, and compliance teams to enable audit-ready capabilities. - Build automation workflows to collect, verify, and store compliance artifacts from diverse engineering systems. - Auditing, reporting and user activity monitoring. - Participate in periodic on-call rotation in the India time zone as part of a global 7x24 environment **Preferred Education** Master's Degree **Required Technical And Professional Expertise** - Knowledge on user lifecycle management, provisioning, Deprovisioning, Reconciliation. - Understanding of the different compliance and industry regulation certifications and their service or product offering. - Exposure to Cloud technologies and familiarity with cloud security controls (IBM/AWS/Azure/GCP) - Knowledge & experience of handling Access/ Patch/ Vulnerability Management. - Experience in MySQL and Bash scripting. - Strong hands-on experience developing backend services using Golang. - Proficiency with Kubernetes, Docker, and containerized application architecture. - Exposure to CI/CD Automation tooling, such as Jenkins, Travis, ArgoCD, Github Actions, Ansible, Tekton etc. - Strong understanding of Git and collaborative development workflows. **Preferred Technical And Professional Experience** - Strong understanding of observability tools such as Prometheus. - Experience with compliance automation tools (Drata, Vanta, Secureframe). - Knowledge of risk management methodologies.