Security Specialist

Nokia

Amadora,PT 2025-03-07

Descrição

Job Description

Strategy and Technology lays the path for Nokia’s future technology innovation and identifies the most promising areas for Nokia to create new value. We set the company’s strategy and technology vision, offer an unparalleled research foundation for innovation, and provide critical support infrastructure for Nokia.

Part of Strategy & Technology, Group Security is Nokia’s central knowledge center responsible for Nokia’s cyber security policies and standards, the cyber security architecture and roadmap, and the monitoring, alerting of security incidents. We partner with the Nokia Business Groups and Central Functions on product security, customer security, and interact with governments on security regulations. Together we take care of Nokia’s security culture, processes, systems, products, and services to position Nokia as a trusted partner for the 5G era and beyond.

The Group Security SAS Analysis & Advisory team is in charge of the security prevention area, being responsible for supporting IT and the business by assisting on the build of a strong line of defense, as well by detecting security issues beforehand, through conducting technical activities aimed at preventing cyber security incidents, ensuring the implementation and verification of cyber security controls making sure that those are fully harmonized with the company security policies and guidelines, by perform risk analysis, as well security advisory consultancy on a wide variety of information security topics and domains.

How You Will Contribute And What You Will Learn

Are you passionate about performing security assessments and solving problems?

  • As part of our team, you will:
  • Perform security assessments and security audits on either new or existing solutions, for both IT and business groups, as well on other activities such as divestitures, solution analysis and focused assessments, following a secure by design approach.
  • Translate security strategies into security requirements and use cases, as well operational requirements (threat modeling, alerting rules…).
  • Provide security consulting and advisory for Nokia IT, Nokia Business Groups and Corporate Functions, supporting them on becoming compliant against Nokia Security Policies.
  • Provide feedback to suppliers and propose actions to mitigate any solution shortcomings
  • Support various Nokia IT & BG teams in advising on security best practices to ensure that Nokia’s critical assets & data always remain fully protected & secure (support in new supplier contract negotiations, support on merger & acquisitions activities, etc…).
  • Act as Trusted Security Advisor towards your peers and other Nokia stakeholders in S&T, BG’s and other central functions across various security domains (Zero Trust Network Architecture, evolution to IPv6, IAM, secure Network & Application Segmentation, cloud & network security, application security, AI technologies, Software Security, Security Automation, Data Security, BC/DR & Cyber Resiliency, malicious attack types & penetration testing techniques…)
  • Detect security flaws in existing digital solutions and provide recommendations on how to overcome these findings in a secure and cost-efficient manner by performing pro-active security architecture assessments and by staying abreast of new attack tactics and techniques.
  • Define & introduce new innovative security solutions into Nokia’s Corporate Infrastructure. This effort encompasses activities like strategic solution thinking, solution budgeting, solution presentations, solution design, solution testing & validation, solution delivery.

Key Skills And Experience

  • You have:
  • Solid and proven technical expertise in one or more multiple cyber security domains, such as (non-exhaustive) endpoint security, application security testing, ERP, and cloud security.
  • Strong knowledge and experience in public cloud solutions (multi-cloud environments).
  • Practical knowledge on network security, networking concepts and architectural implementations.
  • Practical knowledge on vulnerability testing and capability to define proper remediations.
  • Practical knowledge on application, database, and infrastructure security, having a strong understanding on ERP / SAP systems and how to secure them.
  • Minimum of 2 years of relevant professional experience.
  • Proficiency in English.
  • It would be nice if you also have:
  • Degree or master’s degree in Computer Science, Information Systems, Cyber Security, Information Assurance, Information Security, or related technical field.
  • One or more of the following cyber security certifications: CISSP, CCSP, CRISC or GCP Cloud Security Engineer.
  • Attention to detail, excellent problem solving, and follow-up ski

    Para se candidatar a esta vaga, faz login ou crie uma conta.

Partilhar vaga

Categorias