Senior IT Security Compliance Specialist

Job ID: 26251

Risk and compliance is one of the fastest growing-areas of employment in the finance sector and a popular choice for those with an eye for detail.

Would you like to be the part of fresh and dynamic team? We are now searching for an Senior IT Security Compliance Specialist that will be responsible for ensuring that their organization complies with bank standards by creating security configuration baselines for variety of technologies.

In Nordea, we’re harnessing the power of technology to reinvent the future of banking. A tech revolution is underway – and you can make an impact. Though we’re a Nordic bank, we’re also one of the largest IT employers in Tricity and Warsaw. Working with international teams in an inspiring working environment, you’ll have lots of opportunities to expand your skills and advance your career.

About this opportunity

Thank you for joining the IT Security Baseline team. We bring value by ensuring that a company's external regulatory standards and internal regulations are met. As an Senior IT Security Compliance Specialist, you will play an important part in ensuring Nordea operates legally and ethically while reaching its business objectives.

What you’ll be doing:

• Creating new Secuity Configuration Baselines based on vendor documentation, internal and external regulations (including NIST, CIS),
• Performing technical assessment how to configure given technology in securely manner,
• Performing in depth analysis of security configuration requirements for variety of technologies,
• Collaborating with other departments to create culture of compliance.

You’ll join an amitious and dynamically developing team. The role is based in Gdańsk; Copenhagen; Gdynia; Stockholm.

Who you are

Collaboration. Ownership. Passion. Courage. These are the values that guide us in being at our best – and that we imagine you share with us.

To succeed in this role, we believe that you:

• Are collaborative and achieve your expectations through communication and teamwork,
• Show a high level of organization, adaptability, planning, and prioritization skills, and consistently provide timely and good service,
• Eager to collaborate with the team and contribute critical technical expertise.

Your experience and background:

• Understanding of the Linux and Windows platforms is a must,
• Experience with performin security audits,
• Knowledge of how to administer databases would be highly beneficial,
• Knowledge about CIS benchmarking, MS Security Compliance Manager, Qualys Policy Compliance, or any Security Compliance Assessment tools would be beneficial,
• Basic knowledge of Python scripting is an advantage,
• Good written and oral communication skills in English.

If this sounds like you, get in touch!

Next steps

Submit your application no later than 03/10/2024. 

At Nordea, we know that an inclusive workplace is a sustainable workplace. We deeply believe that our diverse backgrounds, experiences, characteristics and traits make us better at serving customers and communities. So please come as you are.
 

For a candidates in Sweden: For union information, please contact finansforbundet@nordea.se or SACONordea@nordea.com.

For a candidates in Poland: Please include permit for processing personal data in CV as following:

In accordance with art. 6 (1) a and b. Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) hereinafter ‘GDPR’. I agree to have: my personal data, education and employment history proceeded for the purposes of current and future recruitment processes in Nordea Bank Abp.

The administrator of your personal data is: Nordea Bank Abp operating in Poland through its Branch, address: Aleja Edwarda Rydza Śmiglego 20, 93-281 Łodź. Your personal data will be processed for the recruitment processes in Nordea Bank Abp. You have a right to access your personal data, right to rectify and right to delete. Disclosing the personal data in the scope specified by the provisions of Polish Labour Code from 26 June 1974 and executive acts are mandatory. Providing personal data is necessary to conduct the recruitment processes. The request for the deletion of your personal data means resignation from further participation in recruitment processes and causes the immediate removal of your application. Detailed information concerning processing of your personal data can be found at: nordea.com/en/doc/nordea-privacy-policy-for-applicants.pdf.

We reserve the right to reply only to selected applications.