IT Security Consultant / Officer Applications

Company Description

Vattenfall is a European energy company with approximately 20 000 employees. For more than 100 years we have electrified industries, supplied energy to people’s homes and modernized our way of living through innovation and cooperation. We now want to make fossil-free living possible within one generation. To be able to reach this ambitious goal we are looking for talented individuals who, in addition to their passion for their own role, also have strong team spirit and want to contribute to supporting a meaningful corporate mission. 

Job Description

Your responsibilities

As IT Security Consultant / Officer you will work in an international team of experts in IT Security. We advise and steer on group policy towards all levels of the organization and external partners. You will in some cases act as a Consultant advising and guiding, and in others act as an Officer, safeguarding group policy. Your focus will on application security. This means you will be:

• Developing IT security standards and guidelines
• Identifying, rating and reporting IT Security risks
• Validating and assessing the risk for certain IT security changes
• Signaling risks and improve security measures in Vattenfall organization
• Evaluating, assessing, monitoring and following up risks with the Risk Owners.
• Actively contributing in reporting to IT management about the IT Security
• Performing security reviews and threat modelling sessions, as well as reporting the findings on a risk based approach
• Ensuring compliance with IT Security standards
• Embedding security in IT architectural building blocks and solution designs
• Contributing in to the development of IT security architecture and initiating security improvement initiatives
• Consulting and guiding the development teams in the area of secure software development and application security
• Supporting, consulting and guiding business and IT projects as an IT Security Officer to make sure security by design is part of the deliverables and the solutions are compliant to security requirements.

Your focus will be on Application Security to support Vattenfall Business and IT units. If this matched your interest, there is also room to play a role in cloud security and IoT security.

Qualifications

We are looking for an experienced Security Officer that would like to contribute to power climate smarter living! Furthermore you bring:

• A Bachelor or Academic degree
• At least five years of experience in application security in an international or corporate environment
• Fluency in English, other languages such as Swedish, German, Dutch and Polish are of additional value.
• Relevant IT Security certifications are plus. (e.g. CISSP, CSSLP, GWEB, GWAPT, CISM, CISA, CRISC, OSCP,)

Furthermore, ideally you bring experience or knowledge with you in:

• The creation of a secure software development lifecycle.
• Implementation of automated security testing in the CI/CD pipeline.
• Application security and related concepts, OWASP, DAST/SAST tools, web application security principles, threat modelling, penetration testing and security testing automation.
• Cloud Security on Microsoft Azure
• IT/Information Security legislations (e.g. Swedish Protection Security Act (NSI), EU NIS Directive, GDPR / data protection, Germany IT Security Act) in the European countries where Vattenfall operates
• Relevant standards, such as ISO27001/2, NIST, CIS
• Cybersecurity principles, techniques and technologies
• Application security testing and/or past experience as a security engineer operating/managing security products in Security Operations
• Information technologies and architectures connecting to IT Security areas

Location: Flexible (Sweden/Netherlands/Germany)

The location for the position is flexible. This means you can choose to be based either in Sweden (Stockholm, Solna, Gotheborg, Umea, Lulea), in Germany (Berlin or Hamburg) or in the Netherlands (Amsterdam). Most work is being done virtually, but minimal travelling between these locations will be required.

Additional Information

Our Offer

We offer a challenging and international work environment and the possibility to work with some of the best experts in the field in an environment that has a strong focus on security.

• You will be working in interdisciplinary teams and you can always count on support from committed colleagues
• A professional environment where you can both learn and add value to bring us one step further in security.
• A central office location with easy access by public transport.
• A healthy work-life balance (smart working) including flexible working location (work from home or office) and time to develop your profession
• At Vattenfall you get the opportunity to contribute in becoming fossil free energy within one generation.
• And last but not least; International and multi-cultural work environment with energetic, motivated colleagues that like to have fun as well!

More information

We welcome your application in English via our website. For more information about the position you are welcome to contact the hiring manager Murat Kültür (+31611018647) or Recruiter Folmer Koper (+31 638710915).

At Vattenfall, we are convinced that striving for diversity helps building a more profitable, efficient and attractive company. Therefore we seek a harmonious balance of employees in terms of age, religion, gender identity & expression, sexual identity, disability and ethnic background.

Since Vattenfall is part of the Swedish critical infrastructure many of our positions are security classed. The final candidates can be subject to a security vetting process, according to the Swedish legislation.