Senior SW Engineer

What Will You Learn and Contribute To? 

As a Product Security Expert, you will be part of an agile development team in charge of the product security for MantaRay NM/ARC/NMCCP products. You will be involved in defining end-to-end security requirements for the product, generating security architecture documents, leading and supporting in security tests and audits of the product. 

As part of the Product Security team, your responsibilities will include: 

Create and maintain Security and Privacy Specifications, Security High-Level Design, Threat and Risk Analysis and Hardening Specification Document for the product as required by Nokia's design for security (DFSEC) process.   

Assess emerging security vulnerabilities following the Security Vulnerability Management (SVM) process, provide applicable workarounds and determine need for security vulnerability fixes. Work closely with development teams and customers to analyse vulnerabilities and/or suggest remediations.  

Perform security tests for endpoint, server, network, and infrastructure security including penetration tests. Develop automation tools for security tests and hardening.  

Work together with product management to provide impact analysis for the Security requirements at the Organization level.  

Work on initiatives to design, develop, and implement security solutions to meet business and compliance requirements.   

Influence product roadmaps to include relevant security and privacy features.  

Expert technical contribution to the design and automation of security infrastructures that support the overarching security policies of the customer. 

Your Skills and Experience:  

An analytical mind for problem-solving, abstract thought, and defensive security tactics.   

Technical knowledge and analysis of information assurance, to include applications, operating systems, physical security, networks, risk assessment, critical infrastructure continuity and contingency planning, emergency preparedness, security awareness and training.   

Good understanding of security tools for endpoint, server, network, and infrastructure security like Burp Suite, Anchore, Codenomicon, SonarQube, Nessus, Tenable, NMAP, Invicti, Defensics, Symantec etc.   

Good understanding of Privacy principles, GDPR and best practices on securing the deployment of product.  

Good understanding of the open source libraries/APIs chosen for the product.   

Experience with Java, Shell Script, Python, Jenkins and Open Source Integration.   

Working experience with Cloud Native, Microservices, Containers and Virtualization Technologies like Docker, Kubernetes (K8s) and Helm is good to have.  

Knowledge in Agile development process & DevOps practices.   

Strong written, oral communication and interpersonal/team skills. 

Security certifications like CISSP, CCSP will be an added advantage.     

 Experience in MantaRay NM product development/testing with strong communication and analytical skills. 

Come create the technology that helps the world act together

Nokia is committed to innovation and technology leadership across mobile, fixed and cloud networks. Your career here will have a positive impact on people’s lives and will help us build the capabilities needed for a more productive, sustainable, and inclusive world.
We challenge ourselves to create an inclusive way of working where we are open to new ideas, empowered to take risks and fearless to bring our authentic selves to work

What we offer
 
Nokia offers continuous learning opportunities, well-being programs to support you mentally and physically, opportunities to join and get supported by employee resource groups, mentoring programs and highly diverse teams with an inclusive culture where people thrive and are empowered.

Nokia is committed to inclusion and is an equal opportunity employer

Nokia has received the following recognitions for its commitment to inclusion & equality:

• One of the World’s Most Ethical Companies by Ethisphere
• Gender-Equality Index by Bloomberg
• Workplace Pride Global Benchmark

At Nokia, we act inclusively and respect the uniqueness of people. Nokia’s employment decisions are made regardless of race, color, national or ethnic origin, religion, gender, sexual orientation, gender identity or expression, age, marital status, disability, protected veteran status or other characteristics protected by law.
We are committed to a culture of inclusion built upon our core value of respect.

Join us and be part of a company where you will feel included and empowered to succeed.