IBM
Cybersecurity Remediation Engineer

How your CV stacks up
Upload your CV to see how well it fits this job role
?%
Cybersecurity Remediation Engineer
Introduction
The CISO Remediation Team is looking to add a cybersecurity Remediation Engineer as part of the overall Cyber Defense organization. In this role, you will contribute to and, over time, drive the technical resolution of security risk across the IBM enterprise, operating at the intersection of security operations, engineering, and architecture. You will help teams recover from incidents, remediate vulnerabilities, and implement durable, scalable security improvements.
Depending on the engagement and experience level, you may remediate issues directly, partner with engineering teams to drive fixes, or design repeatable remediation patterns. This role is not a primary SOC, detection, or application security pipeline ownership role, but partners closely with those teams to drive remediation outcomes.
The ideal candidate thrives in high‑pressure environments, thinks like both an attacker and defender, and communicates clearly with technical and non‑technical stakeholders.
This role spans multiple technical domains. Candidates are not expected to be experts in all areas; strong candidates demonstrate deep expertise in one or two domains and working knowledge of adjacent areas
Your Role And Responsibilities
Areas of specialization may include:
Scripting, Automation & Infrastructure as Code: Python, Ansible, Terraform, or similar tooling Cloud & Virtualized Environments: IBM Cloud, AWS, Azure, GCP; virtualization and container platforms Operating Systems & Networking: Windows or Linux; network segmentation, SDN, and isolation techniques Security Technologies: EDR, NGFW, IDS, SIEM, SOAR, and related platforms
Reasons to use Rodeo
I’m in my final year doing Economics and I don’t know whether to apply for grad schemes now or do a masters first. What do you think?
Honest answer — it depends on where you want to end up. A lot of top grad schemes (Big 4, civil service, banking) don’t need a masters. Let’s look at the ones you’d be competitive for now, and we can decide if a masters actually adds anything.
Also worth knowing: most autumn 2026 applications are open now. Timing matters more than you think.
Start with a chat, not a search bar
Grad scheme, placement, apprenticeship? Not sure what you want yet — that's fine. Your agent talks it through with you and turns "I have no idea" into a shortlist.
Graduate Consultant — 2026 Scheme
Why you're a good match
StrongYour economics background and your summer at a regional bank line up with what PwC looks for on the consulting scheme. Applications close in four weeks.
See breakdownIt searches the market for you
Every day your agent scans the market matching roles against what actually matters to you, not just keywords on a CV.
Why you're a good match
You’ve got the grades and the economics background, and your bank internship is exactly the experience this scheme looks for. Apply soon — deadlines close within the month.
Experience fit
Your summer at the bank plus your econometrics coursework map directly to the day-one responsibilities on this scheme — client modelling, market briefings, and deal support.
Only hits
No noise. No "maybe this fits." Just roles with a clear explanation of why they're right — and where to focus when applying.
Key Duties
Support containment, recovery, and post-incident remediation by identifying root causes and implementing technical fixes that reduce recurrence. Partner with product, engineering, and infrastructure teams to embed security within existing practices. Conduct security and risk assessments of applications, platforms, and infrastructure, including threat modeling and targeted technical review. Apply security principles to protect systems and data, ensuring availability, authentication, authorization, confidentiality, and integrity. Create technical documentation outlining remediation guidance and security best practices. Develop or implement tools to support detection, prevention and analysis of security threats.
Preferred Education
Bachelor's Degree
Required Technical And Professional Expertise
Ability to work independently or as part of a team while operating effectively in ambiguous, fast‑moving environments. Strong problem‑solving skills with attention to detail and a proactive mindset. Strong interpersonal and communication skills with the ability to work effectively across engineering, security, and business teams; and explain technical remediation steps to non-technical stakeholders. Ability to collaborate effectively and, with experience, influence remediation outcomes across federated teams. Experience conducting security reviews and translating findings into actionable engineering guidance. Experience applying and maintaining secure configurations across systems, networks, or applications. Ability to leverage AI tools to accelerate triage, remediation recommendations, and incident response, with appropriate human review and judgement. Knowledge of vulnerability management, common attack patterns, and mitigation techniques. (e.g., OWASP Top 10, MITRE ATT&CK.)


Get help with your application
Your very own career expert that helps elevate your application to the next level.
Preferred Technical And Professional Experience
Experience in security engineering or adjacent engineering roles. (e.g., networking, infrastructure, cloud, or application development.) Experience supporting incident response or post‑incident remediation. Experience with cloud platforms, CI/CD pipelines, containerization, and Kubernetes. Experience using automation and AI to reduce mean time to remediation (MTTR). Familiarity with Agile development environments. Foundational understanding of cybersecurity frameworks and regulations and how they inform risk‑based remediation decisions. (e.g., NIST CSF, NIST 800-series, ISO 27001, PCI.) Certifications are a plus but not required; hands‑on experience is valued most. (e.g., CISSP, CISM, OSCP, SANS, cloud security certifications.)
“It took my CV and asked me questions relevant to understanding what kind of jobs to suggest for me. Suggestions were almost perfect. Jobs were exactly what I’ve been looking for.”
Jessica, London
Skills