Senior Security Specialist, Cloud Infrastructure

at  Nokia

Nokia Product Security is looking for an experienced security specialist to increase the level of security in Nokia’s cloud native products deployed in HyperScaler environments and considering modern architecture mechanisms. Security of modern cloud native solutions is vitally important for Nokia when deploying to public cloud environments.
You will demonstrate value for Nokia’s business groups by instructing them in deploying cloud native products in HyperScaler environments as well as working with the R&D teams assisting them in implementing world class security. In Product Security we are creating Nokia wide requirements and guidelines to ensure a consistent security design across the company products. With you we are further enforcing our capabilities in working with the various R&D teams across Nokia.
Who you are?
You are security expert with technology solutions deployed on cloud infrastructures. Previous knowledge of containerized applications, Kubernetes, private and public cloud platforms (AWS, Google, MS Azure, RH OpenShift,…) is a benefit. You are solution-focused and can inspire the people around you. You are comfortable working with complex projects and a strong communicator. You can also explain complex technical topics in ways that resonate with non-expert audiences.

Job Key Tasks & Responsibilities

• Implement requirements related to the public cloud platform requirements into Nokia’s Design for Security (DFSEC) process
• Evaluate existing infrastructure and identify potential threats
• Continuously maintain knowledge of cloud, infrastructure and security related research and emerging security tools and trends
• Guide R&D teams to implement Nokia’s Design for Security (DFSEC) virtualization requirements to their products.
• Work with other experts in the Product Security to ensure that the Design for Security methodologies are up-to-date
• Present security improvements and capabilities to internal audiences.
• Create communication material of Nokia’s virtualization & container security approaches to internal and external audiences.

Required Qualifications: Education, Technical skills/Knowledge

• At least 5 years of experience working with cloud environments
• Previous experience in R&D
• Previous experience in Virtualization, Container & Cloud technologies
• Previous experience in security architecture in private or public cloud platforms
• Familiar with security technology & architecture principles and Product Security processes, such as Nokia DFSEC.
• Good understanding of software products and their security
• Security certifications (e.g. CISSP, CISM, CEH) is an advantage.
• Excellent interpersonal skills
• Good presentation skills, including the ability to condense and simplify complex technical topics.
• Detailed understanding of cloud security fundamentals, including the shared responsibility model.
• Good knowledge of cloud security procedures and implementations.
• Good understanding about cloud network security concepts
• Broad knowledge and experience across IT infrastructure with security frameworks and standards such as ISO 27001, NIST, CSA, MITRE, and Well-Architected Cloud Frameworks (AWS, Azure, GCP) or other relevant security-related regulations.
• Masters or bachelor’s degree in computer science, security engineering or equivalent. Able to obtain a security clearance or pass a security background check.

• Implement requirements related to the public cloud platform requirements into Nokia’s Design for Security (DFSEC) process
• Evaluate existing infrastructure and identify potential threats
• Continuously maintain knowledge of cloud, infrastructure and security related research and emerging security tools and trends
• Guide R&D teams to implement Nokia’s Design for Security (DFSEC) virtualization requirements to their products.
• Work with other experts in the Product Security to ensure that the Design for Security methodologies are up-to-date
• Present security improvements and capabilities to internal audiences.
• Create communication material of Nokia’s virtualization & container security approaches to internal and external audiences