Job Description

Come create the technology that helps the world act together

Nokia is committed to innovation and technology leadership across mobile, fixed and cloud networks. Your career here will have a positive impact on people's lives and will help us build the capabilities needed for a more productive, sustainable, and inclusive world.

We challenge ourselves to create an inclusive way of working where we are open to new ideas, empowered to take risks and fearless to bring our authentic selves to work.

The team you'll be part of

Our Business Group is a leader in wireless mobility networks and associated services. With more than 3.500 patent families essential for 5G we have a strong 5G portfolio and are a front runner in open and virtualized radio access networks (O-RAN and vRAN).

Enterprise & Services Cloud(ESC) hosts one of the world's largest private clouds based on OpenStack and Kubernetes and support Hybrid Cloud(AWS/AZURE/GCP) automation and services to Nokia business users. You will be part of the team that is responsible for the security of ESC Private Cloud & Hybrid Cloud. The Security Expert will apply deep Cloud security skills to identify, assess, evaluate & control security risks as it relates to cloud platform and the end user applications/data/assets.

What you will learn and contribute to

As part of our team, you will:

• Be part of the core Architecture team of Cloud Infra Security for OpenStack & Kubernetes
• Work on Cloud(Openstack & Kubernetes) configuration security and hardening
• Work on security controls such as encryption, IAM including the role based access control and HSM
• Work with the Cloud architecture team on the secure code development and security the CI/CD pipelines
• Perform Cloud Infra Security assessment using cloud native security tools and methodologies
• Generate reports & recommendations from findings and methods to improve the cloud infrastructure security
• Monitor identity and access management, identify & implement improvement measures to strengthen the security posture
• Identify security gaps in cloud infra security architecture resulting in recommendations for inclusion in the risk mitigation strategy.
• Participate in security governance process to provide security risks, mitigations, and input on other technical risks
• Ensure documentation of systems administration standard operating procedures

Your skills and experience

You have:

• 3-10 years' of experience in designing & implementing security controls for AWS/AZURE/GCP or On-Prem private clouds based on OpenStack or Kubernetes
• Mandatory to be CCSP or CCSK certified
• Strong background and knowledge in ISO 27001 & CSA Security Controls
• Good experience in Malware Analysis, Forensics and SIEM tools
• Monitor identity and access management, identify & implement improvement measures to strengthen the security posture
• Use advanced analytic tools to determine emerging threat patterns and vulnerabilities
• Experience in Linux operating system(Cent OS/Ubuntu/Redhat)
• Ability to design incident response and handling methodologies for network & cloud service models.
• Excellent stakeholder management, communication and presentation skills
• Ability to act calmly and competently in high-pressure, high-stress situations

It would be nice if you also had:

• Nice to have a Professional security certification such as CISSP, CISM or Computer Hacking Forensic Investigator (CHFI)
• Knowledge of cyber-attack stages (e.g., reconnaissance, scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation, covering tracks)
• Proven track record and experience in developing SIEM use cases, Threat hunting, Forensics solutions, as well as successfully executing programs that meet the objectives of excellence in a dynamic business environment
• Familiar with Network technologies and protocols (TCP/IP, WAN/LAN, MPLS, etc)

What we offer

Nokia offers flexible and hybrid working schemes, continuous learning opportunities, well-being programs to support you mentally and physically, opportunities to join and get supported by employee resource groups, mentoring programs and highly diverse teams with an inclusive culture where people thrive and are empowered.

Nokia is committed to inclusion and is an equal opportunity employer

Nokia has received the following recognitions for its commitment to inclusion & equality:

• One of the World's Most Ethical Companies by Ethisphere
• Gender-Equality Index by Bloomberg
• Workplace Pride Global Benchmark
• LGBT+ equality & best place to work by HRC Foundation

At Nokia, we act inclusively and respect the uniqueness of people.

Nokia's employment decisions are made regardless of race, color, national or ethnic origin, religion, gender, sexual orientation, gender identity or expression, age, marital status, disability, protected veteran status or other characteristics protected by law.
We are committed to a culture of inclusion built upon our core value of respect.

Join us and be part of a company where you will feel included and empowered to succeed.

Additional Information