Security Assurance Expert

Family Description

Nokia Digital Automation (DA) is enabling the Industrial Internet of Things (IIoT) and positioning Nokia as a leading solution provider for industrial players seizing the opportunities of the “Fourth Industrial Revolution”. The Architecture and Technologies Security Team is driving holistic security and supports the whole division. You will get the opportunity to participate in solving real-life security questions in a modern team environment working with a huge range of new and established technologies.

Subfamily Description

We are looking to add a new member to Nokia DA Security Team to drive security assurance requirements of DA Product and Service. Our NDAC and MXIE platforms are used to provide a service for private mobile 4G/5G networks, WiFi networks, and relevant applications. They are built on top of cutting-edge technologies, Linux containers, Kubernetes (K8s), and a huge variety of various contemporary infrastructure applications and services.

 

You leverage your expertise in security testing and vulnerability management to document, implement, and influence Nokia’s product and service development. By defining clear security test requirements, you translate them into actionable guidelines for both technical and managerial stakeholders. Collaborating closely with product and solution teams, you ensure these requirements are prioritized and effectively integrated. 

As part of our team, you will: 

• Establish and enforce security testing standards by defining clear requirements, developing robust frameworks, and integrating best practices into the Software Development Life Cycle (SDLC).
• Develop and implement strategies to identify SBOM and hardware composition in DevOps-based products and infrastructure, ensuring clear communication with stakeholders and effective vulnerability tracking.
• Identify and address compliance gaps by benchmarking security test requirements against industry standards.
• Identify, assess, and track vulnerabilities across Nokia solutions while ensuring timely remediation in collaboration with teams.
• Ensure compliance with Nokia’s security policies and support audits and reviews related to security testing.

You come with a credible interest to grow in the security field, and you have:

• Bachelor’s degree in a relevant field like engineering, computer science, or security
• Minimum 5 years of R&D experience in relevant industries 
• Extensive hands-on experience with security tools such as Tenable, Web, Anchore, Xray, and VAMS.
• Strong expertise in security technology and architecture principles, with a deep understanding of Product Security processes (e.g., Nokia DFSEC).
• Educate engineering teams on security testing best practices through awareness and technical guidance.
• Ability to effectively communicate the risk and potential consequence of a non-compliance

It would be nice if you also had:

• Technical knowledge of Linux, Kubernetes, and Android, including system architecture, security, and deployment best practices.
• Experience in Cloud Security and DevSecOps implementation
• Experience with compliance tooling and data analytics and reporting tools like PowerBI
• Ability of understand IT systems and code

Come create the technology that helps the world act together

Nokia is committed to innovation and technology leadership across mobile, fixed and cloud networks. Your career here will have a positive impact on people’s lives and will help us build the capabilities needed for a more productive, sustainable, and inclusive world.
We challenge ourselves to create an inclusive way of working where we are open to new ideas, empowered to take risks and fearless to bring our authentic selves to work

What we offer
 
Nokia offers continuous learning opportunities, well-being programs to support you mentally and physically, opportunities to join and get supported by employee resource groups, mentoring programs and highly diverse teams with an inclusive culture where people thrive and are empowered.

Nokia is committed to inclusion and is an equal opportunity employer

Nokia has received the following recognitions for its commitment to inclusion & equality:

• One of the World’s Most Ethical Companies by Ethisphere
• Gender-Equality Index by Bloomberg
• Workplace Pride Global Benchmark

At Nokia, we act inclusively and respect the uniqueness of people. Nokia’s employment decisions are made regardless of race, color, national or ethnic origin, religion, gender, sexual orientation, gender identity or expression, age, marital status, disability, protected veteran status or other characteristics protected by law.
We are committed to a culture of inclusion built upon our core value of respect.

Join us and be part of a company where you will feel included and empowered to succeed.