Loading...
Share this Job
Primary Location: 

Finland - Helsinki, FI

Function:  Digital Technology & Innovation
Job Category:  Digital Technology and Open Innovation

Specialist, Cloud Security 1

Job Description

 

Information Security organization is responsible for the oversight and coordination of information security efforts across the company and is responsible for identifying security standards, initiatives, as well as setting the strategic direction of the firm’s information security program. Information Security drives risk management as well as security compliance and serves as the key organization responsible with helping the business appropriately manage security risks.

 

Position Description

 

(Senior) Specialist, Cloud Security will be responsible for developing and deploying solutions to provide administrative, technical and procedural (prevent, detect, and respond) controls and mechanisms to help ensure cloud security is implemented and managed at a consistent level across the company according to the objectives of Information Security.

Join our great team with this new and global role which is based in Helsinki/Vaasa or possibly in another Wärtsilä main hub with the required ability to travel as is reasonable.

(Senior) Specialist, Cloud Security reports to Director, Information Security

 

Key Responsibilities

  1. Provide security expertise and perform high-level technical reviews of applications and use cases that are moving to many cloud platforms (usually AWS or Azure).
  2. Solution and build Cloud Native Detective and Responsive controls for cloud that enforce the security baseline at scale, and when necessary integrate with open source and vendor tools. Build and develop automation to actively audit the infrastructure for security misconfigurations.
  3. Work with Cloud team, developers and other teams to implement and integrate Cloud Security solutions, monitoring and compliance.
  4. Supports compliance initiatives (contractual, regulatory, and internal) by creating and delivering appropriate data-driven dashboards, reports, and other supporting artifacts.
  5. Monitor our Cloud estate, react to, investigate and respond to all real or perceived information security and cyber related events, issues, incidents, threat and attacks. – co-working with Cyber Security Operations.
  6. Maintain knowledge of the latest cloud security threats. Periodical reporting of own area.
     
    Detailed responsibility area is agreed and defined with selected person.
     
    General Knowledge, Skills and Abilities
  • Innovative mind-set and the ability to challenge existing approaches to information security
  • Design, develop, administer, and/or maintaining the security of cloud environments (AWS, MS Azure or GCP) with a clear passion for cloud security and cloud technologies.
  • Strong knowledge of hybrid cloud networking architecture, cloud operations, security, automation and orchestration.
  • Experience in building and deploying applications on the Cloud, using CI/CD frameworks and Infrastructure automation, such as: Terraform, serverless framework, Cloudformation, ARM and Bamboo.
  • Experience with languages such as Python
  • Knowledge of data security requirements in the cloud aligned with PCI-DSS, GDPR, ISO27K
  • Knowledge of Cloud Security Alliance (CSA) Cloud Controls Matrix.
  • Familiarity with security issues associated with containers, Kubernetes, distributed systems, and large-scale web applications.
  • Strong practical Linux based systems administration skills and scripting experience in a Cloud based environment is a plus.
  • Secrets Management knowledge
  • Familiarity with monitoring tools
  • Must be both a self-starter and team player with the ability to work independently with limited supervision.
  • Excellent writing and verbal communication skills, interpersonal and presentation skills and the proven ability to influence and communicate effectively in English.
  • Must be flexible mindset and able to manage multiple tasks and priorities on very tight deadlines.
  • Security-related certifications a plus – CRISC, CISSP, CISM, etc.
     
    Experience level expected for this position is 5+ years, but we can also be flexible about this in case you are amazing! This position is full-time and permanent. We will recruit as soon as we find a suitable person so don't hesitate and apply now!

For additional information, contact Petri Koivisto Director, Information Security via e-mail: petri.koivisto(at)wartsila.com

 

Last application date: 26/02/2020

 

This is Wärtsilä

Wärtsilä is a global leader in smart technologies and complete lifecycle solutions for the marine and energy markets. By emphasising sustainable innovation, total efficiency and data analytics, Wärtsilä maximises the environmental and economic performance of the vessels and power plants of its customers. In 2019, Wärtsilä’s net sales totalled EUR 5.2 billion with approximately 19,000 employees. The company has operations in over 200 locations in more than 80 countries around the world. Wärtsilä is listed on Nasdaq Helsinki. Find out more at www.wartsila.com