ESSENTIAL REQUIREMENTS:

• Having good understanding of NIST security framework / controls . Should be able to drive the security architecture level discussion with the product team.
• Understanding webApp and mobile app tiered architecture. (including but not limited to webApp servers, database servers, firewall, VNET (or VPC) concepts.
• Container Security.
• Industry recognized SAST /SCA tools understanding for eg. GHAS
• Microsoft Azure (from securing various managed/unamanaged services in the cloud). Any certification around Microsoft Azure cloud is preferred.
• Concept of Threat Modelling and what are various vulnerabilities around various interfaces in a typical webApp/enterprise app/cloud infrastructure and mobile app architecture.
• Very good understanding of Owasp Top 10 application security risks.
• Having a CISSP or CISM certification can bring the edge.
• Good verbal and written communication skill (person would be required to educate other functions about the values of cyber security activities).
• Having a good industry experience would be preferred.
  Please explain how you meet all the requirements when applying.
  Utilization: 100%
  Location: Malmö
  Period: 09-05-2025-31-08-2025
  Last day to apply: 05-05-2025
  We present regularly. This means that we sometimes remove the assignements from our website before the final application deadline. If you are interested in an assignement, we recommend that you submit your application as soon as possible

Driving the different NIST based security control implementations in the various digital products.