Senior IT Security Officer
Berlin, BE, Germany
Vattenfall
Vattenfall is a leading European energy company and we are working for fossil freedom. Read more about us here.Company Description
Vattenfall is one of Europe’s largest producers and retailers of electricity and heat. Our main markets are Sweden, Germany, the Netherlands, Denmark, and the UK. The Vattenfall Group has approximately 21 000 employees. We have been electrifying industries, powering homes and transforming life through innovation for more than 100 years.
Job Description
Do you want to work internationally on securing our IT landscape? Both act in projects as our IT Security Officer and in others provide internal Consultancy?
IT Security is continuously increasing its importance at Vattenfall. Our highly secured assets spread over different European countries; the fast evolving digitalization; cyber threats and local security regulations makes our work both challenging and interesting.
Your responsibilities
You will work in an international team of experts in IT Security. We advise and steer on group policy towards all levels of the organization and external partners. You do this by:
- identifying, assessing and reporting IT Security risks
- performing security reviews and threat modelling sessions, as well as reporting the findings on a risk-based approach
- developing IT security standards and guidelines
- validating and assessing the risk for certain IT security changes
- ensuring compliance with IT Security standards
- embedding security in IT architectural building blocks and solution designs
- development of IT security architecture and initiating security improvement initiatives
- consulting and guiding the Security Operations teams based on the Cyber Kill Chain Models and Cyber Threat Intelligence.
Qualifications
We are looking for an experienced and ambitious person who is not afraid of asking critical questions and that constantly strives for improvement. On top of that you will bring:
- a Bachelor or Academic degree
- at least five years of experience in a security expert role in an international or corporate environment
Furthermore ideally you bring:
- working knowledge of cybersecurity principles, techniques and technologies
- experience in application security and network security related concepts
- deep understanding on how threat actors operate, execute their kill chain and laterally move within the network.
- experience in the creation of a secure software development lifecycle
- experience in Cloud Security on Microsoft Azure
- good level understanding on how operating systems such as Windows and Linux work and how to implement security hardening
- experience in relevant IT/Information Security legislations in the European countries where Vattenfall operates
- good knowledge of relevant standards, such as ISO27001/2, NIST, CIS
- relevant IT Security certifications are plus. (e.g. CISSP, CSSLP, GWEB, GWAPT)
- other relevant cyber security relevant security certifications are bonus (e.g. CISM, CISA, CRISC, OSCP)
As a person we are looking for you who is structured and a good planner. In this position you will work together with a lot of different people and stakeholders, that's why we do value great collaboration skills. We believe you are a trustworthy person who is honest and have integrity.
Additional Information
Location:
You can choose to be based in Stockholm, Amsterdam, Berlin, Hamburg, Katowice or Gliwice. Hybrid working is the norm, so you can combine home office, with visiting your main location and sometimes international travelling to one of the other locations above.
We are only considering candidates already working and living close to one of our above-mentioned locations.
Hybrid working is the norm, so you can combine home office, with visiting your main location and sometimes international travelling to one of the other locations above.
For more information about the position you are welcome to contact a recruiter Marta Jura via e-mail: marta.jura@vattenfall.com
We welcome your application in English. We kindly request that you do not send applications by any means other than via our website.
At Vattenfall we are convinced that diversity contributes to build a more profitable and attractive company and we strive to be a good role model regarding diversity. Vattenfall works actively for all employees to have the same opportunities and rights regardless of gender, ethnicity, age, transgender identity or expression, religion or other belief, disability or sexual orientation. Click here for further information.
We look forward to receiving your application!
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Application security Azure CISA CISM CISSP Cloud Compliance CRISC CSSLP Cyber Kill Chain GWAPT ISO 27001 Linux Network security NIST OSCP SDLC Threat intelligence Windows
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.