**Introduction** A career in IBM Consulting is built on long-term client relationships and close collaboration worldwide. You’ll work with an experienced team of System Programmers helping shape security policy for ACF2, TSS and RACF environments. With support from our strategic partners, robust IBM technology, and Red Hat, you’ll have the tools to drive meaningful change and accelerate client impact. At IBM Consulting, curiosity fuels success. You’ll be encouraged to challenge the norm, explore new ideas, and create innovative solutions that deliver real results. Our culture of growth and empathy focuses on your long-term career development while valuing your unique skills and experiences. **Your role and responsibilities** The IBM Federal zCloud Team is seeking an IBM Mainframe Security Engineer to support the secure design, engineering, and ongoing operation of mainframe environments for federal clients. This role performs hands on z/OS security administration, implements IBM z/Secure capabilities, and collaborates with operations, development, and cybersecurity teams to maintain a secure, compliant, and highly available mainframe ecosystem. You will work across security operations, configuration management, and compliance functions to ensure clients meet federal requirements while enabling modernization efforts. Key Responsibilities: • Perform hands-on administration of RACF/ACF2/TSS to manage access control, identity governance, and secure configuration. • Implement, configure, and maintain IBM z/Secure, including alerts, controls, compliance reporting, and vulnerability detection. • Install, customize, and maintain z/OS software, program products, and related operational procedures. • Support STIG/DoD cybersecurity baseline requirements and maintain documentation for audits and assessments. • Collaborate with SOC and SIEM teams to ensure proper system logging and monitoring. • Analyze and remediate security vulnerabilities or escalate appropriately. • Produce technical documentation and communicate security impacts to both technical and non technical stakeholders. This role is anticipated to require occasional travel and attendance in IBM or client offices. There is no fixed location for the role. **Required technical and professional expertise** • 5+ years of experience working with IBM mainframe environments. • Proficiency with RACF, ACF2, and/or TSS mainframe security administration. • Hands-on experience installing, customizing, and supporting z/OS software and program products. • Experience configuring, managing, and reporting with IBM z/Secure. • Working knowledge of JCL, REXX, JES2, RACF, SMP/E, TCP/IP, and ISPF. **Preferred technical and professional experience** • 8+ years of IBM mainframe experience and familiarity with broader mainframe product sets beyond core z/OS. • Experience with SIEM tools, vulnerability scanning technologies, network architecture, and/or Managed Security Services (MSSP). • Background with compliance frameworks (NIST, MITRE ATT&CK, OWASP), audit preparation, and evidence gathering. Reside in the Washington, D.C., Maryland, and Virginia (DMV) area. IBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.