Application Security Professional Amadora

Overview

Join to apply for the Application Security Professional role at Nokia.

The Cyber Security Defense Center (CDC) Operations and Compliance Team is seeking an Application Security Professional to implement the program for Application Security Compliance verification. The role involves engaging with Nokia Application Owners, Business Groups partners and other stakeholders to ensure that Nokia’s applications are implemented and operated according to relevant security and privacy requirements.

The Application Security Professional will contribute to addressing the challenges of managing application security for a large organization by creating, enhancing, and executing governance for the program.

What You Will Learn And Contribute To

The CDC OC Application Security team’s mission is to identify and inventory critical assets and perform the required assessments to ensure Confidentiality, Integrity, and Availability of Nokia applications. The role actively contributes to implementing this program within the organization.

Responsibilities

• Initiate and follow defined processes with Application Owners for:
  • Data Classification
  • Application Security Compliance Questionnaires
• Maintain correct inventory of applications and their data classifications.
• Launch and review
  -
  - end execution of program processes, including:
  • Review evidence and results from Application Security Compliance Questionnaires
  • Ensure Data Classification is identified and associated with assets
  • Track findings/non-compliances and follow up remediation with Application Owners to ensure compliance with Nokia security policies and operational processes
• Support Governance with IT and Business Groups stakeholders
• Report the status of the Application Security Domain to management and Business Group Security partners

Key Skills And Experience

• Experience with security controls and techniques (authentication, authorization, encryption, logging, application security testing, etc. )
• Experience in security risk management and cybersecurity domain
• Experience in Enterprise Architecture and Data Governance practices
• Knowledge of information security management frameworks and standards
• Aware of IT policy, SOX, NSA, GDPR, ISO 27001, and data privacy requirements
• Knowledge of relevant legal and regulatory requirements
• Familiar with public cloud,
  - based and AI applications and deployment models
• Strong gap analysis and security audit skills
• Knowledge of application security including OWASP

Education, Experience And Qualifications

• BSc or MSc in computer science or related technical field (preferred)
• 7+ years of experience in cybersecurity (or equivalent by education/interest)
• Hands-on experience in Application Security or as a Security Architect
• Experience with GRC and ITSM tools and processes
• Ability to work independently with minimal guidance
• Fluent in English (oral and written) and able to engage with stakeholders

About Us

Nokia is committed to innovation and technology leadership across mobile, fixed and cloud networks. We strive to create an inclusive culture with opportunities for learning, growth and teamwork. We empower diverse teams to succeed and make a positive impact.

What We Offer

Nokia offers continuous learning opportunities,
- being programs, employee resource groups, mentoring, and a diverse team with an inclusive culture where people thrive and are empowered.

Equal Opportunity

Nokia is an equal opportunity employer. Nokia’s employment decisions are made without regard to race, color, national or ethnic origin, religion, gender, sexual orientation, gender identity or expression, age, marital status, disability, protected veteran status or other characteristics protected by law. We value inclusion and respect.

How to Apply

Referrals increase your chances of interviewing at Nokia.