#1 Job Board for tech industry in Europe

  • Job offers
  • Senior Security Officer (DevSecOps)
    Security

    Senior Security Officer (DevSecOps)

    Gdynia
    Type of work
    Undetermined
    Experience
    Senior
    Employment Type
    Permanent
    Operating mode
    Office

    Tech stack

      Security

      advanced

      English

      advanced

      SDLC

      advanced

    Job description

    Would you like to play a key role in ensuring that Nordea is protected against IT security threats? We are now looking for a  Senior Security Officer (DevSecOps) who will support driving the Secure DevOps culture inside Nordea. By joining the Chief Security Office, this is an opportunity for you to contribute in Nordea’s DevSecOps journey as well as setting directions for IT Security. 

    You will be having a key role in our Secure Development Engineering team by defining, driving, implementing and monitoring security controls embedded in the secure software development lifecycle (SDLC) as well as ensuring development security controls are operating effectively.

    At Nordea, we know our customers’ needs are changing – and we’re deeply committed to meeting them with the financial solutions of tomorrow. We’re creating an agile environment where we’re harnessing the power of technology – one where you can make an impact. So bring your skills, ideas and unique background. With us, you’ll find plenty of opportunities to grow and make your mark on something bigger.

    About this opportunity

    Welcome to the Secure Development Engineering team. As a member of the Nordea Security team you will be working within Nordea Group Risk in second line of defense. We are overall responsible for security monitoring, control and reporting and that Nordea has an effective security governance and management process in place.

    We add value to Nordea and to our customers by managing the information security risks and enabling leaders and employees to act correctly in protecting the confidentiality, integrity and availability of information. Our unit supports the entire Nordea Group.

    What you’ll be doing:
    • define, monitor and measure security controls embedded in our SDLC (Software Development Life Cycle)
    • define and demonstrate prudent application and infrastructure security oversight
    • dhallenge and proactively advice the first line on security processes, regulatory compliance, and control appropriateness
    • work closely with development teams to ensure the applications are designed with security and operability in mind
    • design and improve security processes to support our key activities, both in IT Security and DevOps environment
    • ensure our secure development and operations practices fulfil all needs for getting leading Nordea solutions without compromising security or compliance requirements
    • experiment and learn about new techniques and opportunities that can benefit Nordea, to build and prepare for the future
     
    The role is based either in Gdynia, Gdańsk, Warsaw, Copenhagen, Helsinki, Stockholm or Tallinn.

    Who you are

    Collaboration. Ownership. Passion. Courage. These are the values that guide us in being at our best – and that we imagine you share with us. 

    To succeed in this role, we believe that you:
    • possess the capability of transforming IT Security and the regulatory requirements into operational processes, and ensure the implementation of IT security controls  
    • have an interest for IT Security combined with understanding of regulatory requirements
    • demonstrate structured thinking and be comfortable working with complex assignments 
    • secure SDLC is your true interest with an understanding of the full process and how to continuously improve it
    • are proactive, independent, pragmatic and solution oriented
       
    Your experience and background: 
    • experience in working with IT Security processes, governance, measures and controls (e.g. Threat modelling, DAST, SAST etc.)
    • excellent understanding what drives security, other than just code quality when developing and delivering software
    • hold integrity and trust as your core values and have excellent collaboration and stakeholder management skills
    • you have a strong cultural awareness and a dynamic approach, willing to take on extra responsibilities when needed
    • you have superior English spoken and written skills
    • relevant security qualifications such as CSSLP, CISM, CISSP will be considered as huge advantage 
     
     

    If this sounds like you, get in touch!

    Check similar offers

    Cyber Threat Intelligence Team Lead

    New
    Bank Millennium
    Undisclosed Salary
    Warszawa
    Security
    Threat hunting

    Head of Cloud Cryptography

    New
    HSBC Service Delivery
    Undisclosed Salary
    Kraków
    Cloud Services
    HSMs
    Security

    IT Risk&Compliance Manager

    New
    ALTEN Polska
    Undisclosed Salary
    Gdańsk
    Linux
    English

    Security Engineer

    New
    Experis Manpower Group
    7.26K - 8.07K USD
    Wrocław
    , Fully remote
    Fully remote
    English
    security assessment tools
    Security standards

    Senior Project Manager (Security)

    New
    7N
    6.05K - 8.07K USD
    Warszawa
    , Fully remote
    Fully remote
    Project Management
    Public Cloud
    Cybersecurity