SecOps Engineer

Company Description

Vattenfall is one of Europe’s largest producers and retailers of electricity and heat. Our main markets are Sweden, Germany, the Netherlands, Denmark, and the UK. The Vattenfall Group has approximately 20,000 employees. We have been electrifying industries, powering homes and transforming life through innovation for more than 100 years. We now want to enable the fossil freedom that drives society forward and we are driving the transition to a sustainable energy system.

Job Description

Would you like to be a part of our team as we move towards a fossil freedom?

Because of fast growing security developments and threats, we want to enhance our security organization by increasing operational security in our delivery units. To realize this ambition, we set up a technically oriented Security Operations Team (SecOps) focusing on implementing security related improvements for the whole IT landscape. 
The SecOps department is an international team of IT engineering colleagues representing different competence areas. We follow security trends, identify vulnerabilities and security findings and above all, focus on implementing improvements.  

Our environment 

The SecOps department is an international team of IT engineering colleagues representing different competence areas. We follow security trends, identify vulnerabilities and security findings and above all, focus on implementing improvements. One of the key competences within SecOps services is data encryption and key management. In order to provide high quality services within Vattenfall‘s IT landscape we continue development of this area. As a result we keep our team growing and we’re looking for a new colleague who will help us in this journey.

Your job as SecOps Engineer in data security

We are looking for a talented and motivated person with security mindset. As a SecOps Engineer you will continuously work on improvement of Vattenfall’s security posture by contribution in tasks like mitigation of challenging vulnerabilities, work on defined key risk indicators, isolation of unsupported OS, etc. 
You will work with various teams on harmonization of IT security processes, automation of daily tasks and security implementations.

Your key activities will be: 

• Coordinate security implementations (i.e. vulnerability mitigations) for data center environment 

• Monitor globally defined Key Risk Indicators and mitigate them 

• Create automation usecases (Automation Zone)  

• Isolation of servers with unsupported OS (LCM) 

• Proactively look for the most critical vulnerabilities and drive mitigation process 

• Security reporting analysis in order to mitigate compliancy/security misconfiguration 

• Act as a SME for security topics to other Teams 

• Follow/analyze Vattenfall Security Standards and internal IT processes to harmonize work among different platforms and environments (*NIX/Windows, on-prem/cloud) 

• Stay informed about recent developments on new security technologies and assess their applicability to the organization 

• Provide technical guidance and training to other team members 

• Develop and maintain SecOps internal and external knowledge base  

• Participate in projects, audits and compliance assessments 

You will also contribute in:

• Support Data Centre Teams with coordination of security topics. 

• Support Automation Team with development of automation scripts and use cases 

• Cooperate with AppOps Team to work on evergreen update solutions for applications 

• Helping to define security baselines and initiate changes 

• Support the line organization with execution and broaden IT Security knowledge 

• Support SecOps internal Team members in other areas like firewall implementation process for cloud or data security topics (HSM) 

Qualifications

Our ideal candidate

Will you become our SecOps expert and help us enable the fossil freedom that drives society forward?

And do you enjoy creating efficient and lean encryption and key management solutions? Then this is your job! Furthermore you bring:

• Experience in SecOps or cybersecurity roles, specifically within data center environments. 

• Knowledge of data center infrastructure (servers, storage, networking) and its associated security requirements. 

• Understanding of data center network security, including VPNs, firewalls, and access control mechanisms 

• Experience with cloud based or on-prem environments 

• Administrative experience of Windows/*NIX operating systems 

• Experience with vulnerability management tools and techniques, including patch management and vulnerability scanning 

• Excellent problem-solving and very good analytical and conceptual skills  

• Strong and effective communication and collaboration skills  

• Independent, structured and systematic way of working and enjoy working in a team in an interdisciplinary environment  

• Very good written and spoken English,  

• Willingness to undertake occasional business trips  

• Familiarity with NSX-T virtualization technology 

• Scripting in Python/Ansible 

Nice to have:

One of the key competences of SecOps Team you can develop within this role is data encryption and key management: 

• Familiarity with HSM (e.g. Hardware Security Modules, TPM, TEE, smartcards) or key management technologies and their integration. 

• Knowledge of implementation encryption and key management to ensure the security of data in transit and at rest 

• Basic understanding of cryptographic concepts, standards and tools (encryption, digital signatures, authentication, X.509/PKI) and related protocols (e.g., SSL/TLS, KMIP, PKCS#11) 

Additional Information

Our contribution towards fossil freedom

In Vattenfall IT, we:

• Accelerate digitalization and innovation
• Create customer value in a close business and IT partnership to reach a vision of a future where everyone can choose fossil free ways to move, make and live.
• Promote the mindset and behavior to establish a learning culture and positive digital mindset

At Vattenfall, we are convinced that striving for diversity helps building a more profitable, efficient and attractive company. Therefore we seek a harmonious balance of employees in terms of age, religion, gender identity & expression, sexual identity, disability and ethnic background.

What we offer

We offer an exciting and challenging job where you work close to business as well as to technology. You will have the chance to broaden your area of expertise even more and gain a solid understanding of the energy utility business as well. Vattenfall wants to be your employer of choice and offers excellent primary and fringe benefits. Besides being a challenging and inspiring place to work, we value a great work atmosphere, hybrid working and an excellent work-life balance. We want to be the best in what we do. We offer good remuneration, attractive employment conditions and opportunities for personal and professional growth.

Location: Stockholm (Solna) or remotely in Poland. Some travel between locations is part of the job.

Our Organization

Energy is our contribution to quality of life – day after day. With around 20,000 colleagues Vattenfall provides comprehensive electricity and heating offerings to several million customers in northern Europe. For the work ahead we need people who are fully dedicated to our customers and to a sustainable society – people like you.

Vattenfall IT is the internal provider of IT for the entire Vattenfall Group. With 1.400 employees located in Germany, Poland, The Netherlands and Sweden, we contribute to our international business success. Every day, we deliver to make sure that Vattenfall runs ever more effectively and efficiently. We drive initiatives for Vattenfall through collaboration: within Strategic Development; with our colleagues in the business; and with outside partners. Trust from our stakeholders; holistic perspective; and strong competence are key assets and critical success factors.

More Information

For further information regarding the recruitment process you are welcome to contact recruiter Marta Jura - marta.jura@vattenfall.com

Please apply directly with your English CV through our website.