What you will learn and contribute to
Are you passionate about performing security assessments and solving problems?
As part of our team, you will :
Perform security assessments and security audits on either new or existing solutions, for both IT and business groups, as well on other activities such as divestitures, solution analysis and focused assessments, following a secure by design approach.
Translate security strategies into security requirements and use cases, as well operational requirements (threat modeling, alerting rules ).
Perform security risk analysis and risk management.
Perform web application security testing and vulnerability assessments.
Provide security consulting and advisory for Nokia IT, Nokia Business Groups and Corporate Functions, supporting them on becoming compliant against Nokia Security Policies.
Validate security controls proposed by Nokia technical teams and / or Nokia suppliers.
Collaborate with all Group Security teams and other key stakeholders (such IT or business teams) during solution validation and user acceptance testing.
Act as contact point for Group Security community on assigned topics and support your peers when being consulted on a broad spectrum of security solutions.
Provide feedback to suppliers and propose actions to mitigate any solution shortcomings
Your skills and experience
You have :
Solid and proven technical expertise in one or more multiple cyber security domains, such as (non-exhaustive) endpoint security, application security testing, ERP, and cloud security.
Strong knowledge and experience in public cloud solutions (multi-cloud environments).
Practical knowledge on network security, networking concepts and architectural implementations.
Practical knowledge on vulnerability testing and capability to define proper remediations.
Practical knowledge on application, database, and infrastructure security, having a strong understanding on ERP / SAP systems and how to secure them.
Minimum of 2 years of relevant professional experience.
Proficiency in English.
It would be nice if you also have :
Degree or master’s degree in Computer Science, Information Systems, Cyber Security, Information Assurance, Information Security, or related technical field.
One or more of the following cyber security certifications : CISSP, CCSP, CRISC or GCP Cloud Security Engineer.
Attention to detail, excellent problem solving, and follow-up skills are required.
Ability to convey technical security concepts to non-technical audiences.
Strong technology insight with a full appreciation on how technology can enable positive business transformation.
What we offer
Nokia offers flexible and #LI-Hybrid working schemes, continuous learning opportunities, well-being programs to support you mentally and physically, opportunities to join and get supported by employee resource groups, mentoring programs, and highly diverse teams with an inclusive culture where people thrive and are empowered. #LI-Hybrid
Nokia is committed to inclusion and is an equal opportunity employer
Nokia has received the following recognitions for its commitment to inclusion & equality :
One of the World’s Most Ethical Companies by Ethisphere
Gender-Equality Index by Bloomberg
Workplace Pride Global Benchmark
LGBT+ equality & best place to work by HRC Foundation