Cyber Defense Center Engineer

Strategy and Technology lays the path for Nokia’s future technology innovation and identifies the most promising areas for Nokia to create new value. We set the company’s strategy and technology vision, offer an unparalleled research foundation for innovation, and provide critical support infrastructure for Nokia.

Part of Strategy & Technology, Group Security is Nokia’s central knowledge center responsible for Nokia’s cyber security policies and standards, the cyber security architecture and roadmap, and the monitoring, alerting of security incidents.

What you will learn and contribute to

For this position you’ll be part of Group’s Security Cyber Defense Center working as a Security Engineering Professional.

As part of our team, you will be specifying, implementing and maintaining the tools and systems required to support Cyber Defense Center (CDC) operations. Among other these including the Security Information and Event Management (SIEM), the respective security alerting rules, logging infrastructure, Threat Intelligence platforms and integrations, Security Orchestration, Automation and response (SOAR) with the respective automation playbooks, etc.

The Key accountabilities for this role include:

• Develop and maintain the tool and system configurations to have an effective Cyber Defense operations;
• Accountable for flawless execution of the Cyber Defense incident response processes;
• Interact with internal delivery teams to create new integration and security monitoring/detection capabilities with Cyber Defense Center;
• Collaborate with the CDC SOC Analyst in implementing use cases that leverage existing tools to enable automation and improve security incident detections;
• Identify use cases that leverage existing tools to enable automation;
• Work to identify security integration strategies;
• Create reusable and efficient Automation Playbooks;
• Implement and deliver continuous improvement in the automation Playbooks for security indecent response and Security Compliancy verifications. This role also includes supporting the definition of requirements that enable new and innovative integrations with additional tools and systems;
• Master the security equipment’s, relevant tools and optimize the configurations;
• Train and mentor security operational teams;
• Partner with Security Operations and Architecture teams, Threat intelligence experts, CERT and other Digital Office and Business Group Stakeholders;
• Actively participate in the Security Community as a SME, presenting in forums, both online and at conferences.
• Research security enhancements and make recommendations to management;
• Stay up to date on information technology trends and security standards.

• Education: Master’s degree in computer science or related technical field with strong background on software development. Cybersecurity, information assurance or information security specializations and certifications are a bonus.
• English proficiency
• Experience: Minimum of 2 years of relevant professional experience required in software development (DevOps) and/or working as SOC Engineering professional

• Good programing/scripting skills (knowledge of Python, PowerShell and KQL);
• Knowledge Microsoft Azure, Azure Sentinel, Azure Log Analytics, AWS and GCP platforms
• Security Logging and Log Management
• Knowledge of ELK Stack
• Software Whitelisting Operations
• Vulnerability Scanning and Assessments
• Anti-malware and anti-spam (high touch point to executives and common attack vectors).
• Network Firewall and VPN
• DLP
• Proxy Management
• NIDS/NIDP
• HIPS
• Routing and LAN switching
• Server management (Wintel and UX)
• Monitoring, logging & security event correlation techniques
• Data analytics technologies & methodologies.
• Advanced reporting techniques (e.g. PowerBI)

It would be nice if you also have:

• Certified Ethical Hacker – EC Council (CEH)
• Certified Computer Forensics Examiner (Access Data, SANS)
• Certified Information Security Systems Professional (CISSP)
• Certified Cloud Security Professional (CCSP)
• Certified Information Systems Manager (CISM)
• Certified in Information Systems Risk Management (CRISC)

Or the ability to work toward obtaining the above certifications.

What we offer

Nokia offers flexible and hybrid working schemes, continuous learning opportunities, well-being programs to support you mentally and physically, opportunities to join and get supported by employee resource groups, mentoring programs and highly diverse teams with an inclusive culture where people thrive and are empowered.

Nokia is committed to inclusion and is an equal opportunity employer

Nokia has received the following recognitions for its commitment to inclusion & equality:

• One of the World’s Most Ethical Companies by Ethisphere
• Gender-Equality Index by Bloomberg
• Workplace Pride Global Benchmark
• LGBT+ equality & best place to work by HRC Foundation

At Nokia, we act inclusively and respect the uniqueness of people.

Nokia’s employment decisions are made regardless of race, color, national or ethnic origin, religion, gender, sexual orientation, gender identity or expression, age, marital status, disability, protected veteran status or other characteristics protected by law.

We are committed to a culture of inclusion built upon our core value of respect.

Join us and be part of a company where you will feel included and empowered to succeed.