Care Security Technical Manager

The Care Security Technical Manager will join a collaborative team focused on Care services for our customers. This role involves close interaction with various departments, including R&D and product management. You will provide advanced technical and product support within Care service delivery, operating in a 24x7 support environment. Responsibilities include handling complex troubleshooting cases at the solution/system level and acting as the primary interface to R&D for escalating and resolving customer issues. This position offers a chance to shape security strategies and make a significant impact on our services.

As part of our team, you will:

• Assess emerging security vulnerabilities following the Security Vulnerability Management (SVM) process, provide applicable workarounds and determine need for security vulnerability fixes. 
• Work closely with software architect and software R&D team to analyze vulnerabilities and/or suggest remediations.
• Ability to work together with product management to provide impact analysis for the Security requirement at the Organization level. 
• Working on initiatives to design, develop, and implement security solutions to meet business and compliance requirements, influencing product roadmaps to include relevant security and privacy features.
• Deep understanding of Privacy principles, GDPR and best practices on securing the deployment.  Technical knowledge and analysis of information assurance, to include applications, operating systems, physical security, networks, risk assessment, critical infrastructure continuity and contingency planning, emergency preparedness, security awareness and training.
• Conduct network security audits 
• An understanding & usage of security tools for endpoint, server, network, and infrastructure security tools including Burp Suite, Anchore, Codenomicon, SonarQube, Zenmap, Nessus, Tenable, NMAP, Invicti, Defensics, Symantec etc.
• Use manual testing techniques and methods to gain a better understanding of the environment and reduce false Positives.
• Travel: up to 15%

Note: No relocation offered for this role.

You have:

• Knowledge of telecom network architectures including 4G & 5G, computer networking concepts and protocols, and network security methodologies.
• Skilled in Vulnerability Management, Secure configuration and Application Security tools, and techniques, with an analytical mind for problem-solving, abstract thought, and defensive security tactics.
• Knowledge and understanding of relevant legal and regulatory requirements e.g. NAM specific telecom security conditions, CII (Critical Information Infrastructure) regulations etc., including common information security management frameworks, such as ISO/IEC 27001, ITU.Tx.805 ITIL, COBIT as well as those from NIST, including 800-53 and Cybersecurity Framework.
• Working experience with Cloud Native, Microservices, Containers and Virtualization Technologies like Docker, Kubernetes (K8s), Helm is good to have. Experienced with Linux & windows including scripting languages like shell, python. 
• Ability to interact & coordinate with third party vendors for resolution of security vulnerabilities.

It would be nice if you also had:

• Professional security management certification is desirable, such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Computer Hacking Forensic Investigator (CHFI), Any SIEM (Splunk, ArcSight or Q-Radar) certification, CEH, OSCP.
• Collaborative skills for working in cross functional matrix environment.
• Minimum of 10 years of relevant experience in Telecom/IT Security in a large Enterprise/telecom Operator Environment.
• Experience in manual testing including Penetration testing is an advantage.

Come create the technology that helps the world act together

Nokia is committed to innovation and technology leadership across mobile, fixed and cloud networks. Your career here will have a positive impact on people’s lives and will help us build the capabilities needed for a more productive, sustainable, and inclusive world.
We challenge ourselves to create an inclusive way of working where we are open to new ideas, empowered to take risks and fearless to bring our authentic selves to work

What we offer
 
Nokia offers continuous learning opportunities, well-being programs to support you mentally and physically, opportunities to join and get supported by employee resource groups, mentoring programs and highly diverse teams with an inclusive culture where people thrive and are empowered.

Nokia is committed to inclusion and is an equal opportunity employer

Nokia has received the following recognitions for its commitment to inclusion & equality:

• One of the World’s Most Ethical Companies by Ethisphere
• Gender-Equality Index by Bloomberg
• Workplace Pride Global Benchmark

At Nokia, we act inclusively and respect the uniqueness of people. Nokia’s employment decisions are made regardless of race, color, national or ethnic origin, religion, gender, sexual orientation, gender identity or expression, age, marital status, disability, protected veteran status or other characteristics protected by law.
We are committed to a culture of inclusion built upon our core value of respect.

Join us and be part of a company where you will feel included and empowered to succeed.