Nokia Security Analyst 

Portugal 

594910204

As part of our team, you will:

• Perform security assessments and security audits on either new or existing solutions, for both IT and business groups, as well on other activities such as divestitures, solution analysis and focused assessments, following a secure by design approach.
• Translate security strategies into security requirements and use cases, as well operational requirements (threat modeling, alerting rules…).
• Perform security risk analysis and risk management.
• Perform web application security testing and vulnerability assessments.
• Provide security consulting and advisory for Nokia IT, Nokia Business Groups and Corporate Functions, supporting them on becoming compliant against Nokia Security Policies.
• Validate security controls proposed by Nokia technical teams and / or Nokia suppliers.
• Collaborate with all Group Security teams and other key stakeholders (such IT or business teams) during solution validation and user acceptance testing.
• Act as contact point for Group Security community on assigned topics and support your peers when being consulted on a broad spectrum of security solutions.
• Provide feedback to suppliers and propose actions to mitigate any solution shortcomings

You have:

• Solid and proven technical expertise in one or more multiple cyber security domains, such as (non-exhaustive) endpoint security, application security testing, ERP, and cloud security.
• Strong knowledge and experience in public cloud solutions (multi-cloud environments).
• Practical knowledge on network security, networking concepts and architectural implementations.
• Practical knowledge on vulnerability testing and capability to define proper remediations.
• Practical knowledge on application, database, and infrastructure security, having a strong understanding on ERP / SAP systems and how to secure them.
• Minimum of 2 years of relevant professional experience.
• Proficiency in English.

It would be nice if you also have:

• Degree or master’s degree in Computer Science, Information Systems, Cyber Security, Information Assurance, Information Security, or related technical field.
• One or more of the following cyber security certifications: CISSP, CCSP, CRISC or GCP Cloud Security Engineer.
• Attention to detail, excellent problem solving, and follow-up skills are required.
• Ability to convey technical security concepts to non-technical audiences.
• Strong technology insight with a full appreciation on how technology can enable positive business transformation.

Nokia has received the following recognitions for its commitment to inclusion & equality:

• One of the World’s Most Ethical Companies by Ethisphere
• Gender-Equality Index by Bloomberg
• Workplace Pride Global Benchmark