🌎
This job posting isn't available in all website languages

For Nokia Internal Employee access Log in here

Join us at Nokia to connect the world

Search jobs

📁
Applied R&D
💼
CNS Cloud and Network Services
📅
21000006AH Requisition #

About Nokia 

We create the technology to connect the world. Only Nokia offers a comprehensive portfolio of network equipment, software, services and licensing opportunities across the globe. With our commitment to innovation, driven by the award-winning Nokia Bell Labs, we are a leader in the development and deployment of 5G networks.
Our communications service provider customers support more than 6.4 billion subscriptions with our radio networks, and our enterprise customers have deployed over 1,300 industrial networks worldwide. Adhering to the highest ethical standards, we transform how people live, work and communicate. A truly global company, we are 166 nationalities working in more than 118 countries.
Come create the technology to connect the world.

About CNS

Cloud and Network Services is a leading Nokia business group that offers Network solutions on Core, Business and Enterprise segments, as well as Cloud solutions and Cognitive Services. It is a newly formed business group, that includes most of the former Nokia Software business, Nokia’s enterprise solutions, core network solutions including both voice and packet core, and managed and advanced services from its former Global Services unit. This unit will also act as a delivery channel of certain products from other business groups to enterprise customers. Cloud and Network Services (CNS) will target growth by leveraging the industry transition to cloud-based delivery, network-as-a-service business models, and software-led value creation.

Job Description 

An experienced cybersecurity professional to fill the role of Security Assurance Specialist. In this role you will support Nokia Cloud & Networking Services (CNS) teams in their efforts to create secure software by collaborating with them and key stakeholders by applying your security expertise to prevent introduction of security vulnerabilities, performing security testing to identify defects and other vulnerabilities, analyzing security test results and making recommendations for remediating solutions. Nokia customer teams will request your support in resolving and timely responding to customer security related cases. The CNS Security Team will expect you to contribute to the annual program planning and road mapping. As security certification requirements emerge, you will be expected to support CNS stakeholders on planning for and carrying out security certification activities, which can include hands-on or automated testing, results analysis and remediation. As CNS encounters security events that require incident response management, you may become a contributing member of the CNS incident response team. Other Nokia business group security teams and stakeholders will expect you to network with them and provide coaching and mentoring, as well as collaboration to build the security culture and maturity within Nokia. 
Your experience will be needed with assuring the Nokia security vulnerability management (SVM) process is followed by CNS teams. You will collaborate with key teams in the use of SVM tools to resolve related issues and meet their SVM key performance indicators (KPIs). 
A background in software development is strongly desired to allow you to collaborate and lead efforts to turn security test cases into code (Everything as Code – EAC) and introduce innovative ways to automate security testing across the product development lifecycle (PDLC). 
This role will require knowledge of security testing, secure software development practices and broad knowledge of application and network security vulnerabilities and how to identify and mitigate them. Configuring, running various testing tools, generating reports, communicating with development teams and negotiating remediation of issues are key components of the role.
You will help to promote and apply Nokia standards and guidance for Design for Security (DFSEC) process, tools and collaborate with Nokia Group Product Security team on continual improvement to these standards and guidelines.
As an experienced engineer you will help define and build CNS security expertise, including CNS specific security standards, guidelines and standard operating procedures and execute the targets of the security program across CNS. You will be a source of coaching and mentoring for security expertise within CNS and Nokia.

Job Responsibilities & Competencies

•    Support customer teams managing customer security cases by leveraging security assurance expertise and CNS engineering stakeholders, leading to timely case resolution
•    Work with CNS architects, engineers, project managers and program managers to review, analyze, identify security issues and agree on recommended remedies 
•    Conduct and participate in security threat and risk assessments
•    Install, configure and operate security test tools, as well as analyze and recommend remediations to identified security test findings
•    Produce summary test reports with scheduled remediations from outputs of security test tools
•    Collaborate with CNS DevOps teams to create roadmaps evolving into a DevSecOps
•    Organize and facilitate continuous security testing virtual team meetings with CNS stakeholders
•    Contribute to annual CNS Security Program planning and roadmaps
•    Support CNS engineering and product management teams to secure their products, solutions and services
•    Provide support to Nokia incident response management teams
•    Coach and mentor CNS stakeholders on information and product security skill building
•    Promote a culture in CNS of Zero Trust and best security practices

Required Minimum Qualifications: (Education, Technical Skills/Knowledge)

•    Bachelor’s degree in computer science or related degree program or equivalent experience required
•    10 years of experience in information and product security
•    Demonstrated experience in security testing, vulnerability testing, secure hardening testing (Wireshark, Coverity, SonarQube, Defensics, Netsparker, Tenable.sc, Anchore, NMAP, CAT Pro, OpenScap)
•    Proficiency with secure code, vulnerability, hardening test tools and analysis of their reports
•    Proficiency coding scripting languages (Python, PHP)
•    Proficiency writing security test cases as code (Python, Gherkin)
•    Experience creating security testing using ATDD, BDD frameworks (Robot, Cucumber)
•    Experience with creating automated configuration verification scripts (Ansible)
•    Experience providing security assurance support to engineering and product management teams
•    Software development background including coding and testing
•    Excellent oral and written communication skills
•    Team player able to engage and collaborate with stakeholder network
•    Demonstrated ability to successfully work and collaborate within global distributed teams
•    Ability to enhance team learning environment with coaching and mentoring

Certification
•    ISC2 CISSP

Imagine creating technology that has the potential to change the world. Working with us, you will have a positive impact on people’s lives and help to overcome some of the world’s most pressing challenges. We act inclusively and respect the uniqueness of people. At Nokia, employment decisions are made regardless of race, color, national or ethnic origin, religion, gender, sexual orientation, gender identity or expression, age, marital status, disability, protected veteran status or other characteristics protected by law. Nokia culture welcomes people as their true selves. Come create the technology to connect the world.

Diversity, Equity and Inclusion:  Nokia is committed to building a skilled, diverse and inclusive workforce reflective of Canadian society. As a result, we promote employment equity and are an equal opportunity employer that attracts and hires talent regardless of age, race, creed, colour, religion, national origin, ancestry, marital status, affectional or sexual orientation, gender identity or expression, disability, nationality, sex, or any other legally protected grounds and will not discriminate on these bases.

Previous Job Searches

My Profile

Create and manage profiles for future opportunities.

Go to Profile

My Submissions

Track your opportunities.

My Submissions
Life at Nokia
Explore Employee Blogs
We create the technology to connect the world

Stay in touch with us through our social media channels:

Follow us on Facebook
Follow us on LinkedIn
See us on Glassdoor
Follow us on Twitter

Similar Listings

CNS Cloud and Network Services

Dallas, Texas, United States

📁 Applied R&D

Requisition #: 2100000BYM

CNS Cloud and Network Services

Dallas, Texas, United States

📁 Applied R&D

Requisition #: 2100000F15

CNS Cloud and Network Services

Austin, Texas, United States

📁 Applied R&D

Requisition #: 2100000EH6

Teams at Nokia

See all jobs

Research & Development

See new jobs

Market & Sales development

See new jobs

Corporate services

See new jobs
Nokia is an equal opportunity employer that is committed to diversity and inclusion. At Nokia, employment decisions are made regardless of race, color, national or ethnic origin, religion, gender, sexual orientation, gender identity or expression, age, marital status, disability, protected veteran status or other characteristics protected by law.