Cyber Security Specialist

This is an ad for creators of change!

This is for you who wants to have a real impact on creating a healthier planet for our children every day. At Neste, you will be working for the world’s leading producer of sustainable aviation fuel and renewable diesel and a forerunner in developing renewable and circular feedstock solutions for polymers and chemicals. Let’s create transformation for a sustainable future together.

Are you interested in working in the Cyber Governance, Risk and Compliance area?

We are looking for an experienced

Cyber Security Specialist 

to join our Cybersecurity team in Espoo.

As a Cyber Security Specialist, you will work with other world class experts in developing, implementing, and maintaining Neste's governance, risk management, and compliance (GRC) framework. You will collaborate closely with our IT solution teams and business stakeholders to ensure that we have effective risk management processes, solutions and controls in place for the needs of our rapidly growing businesses. Work is conducted in hybrid mode with an optimum balance between office and remote work. 
 

Cyber Security works in matrix organisation. You’ll report to line manager Ulla Palmila and in matrix to Cyber GRC Lead Santtu Erkkilä.

Reasons to join

Real impact right now. We work in an inspiring and evolving business environment, where everything we do serves one purpose: to create a healthier planet for our children. To drive a growing impact as a global leader in renewable and circular solutions we live by our values every day; we care, we have courage, we cooperate.

Safety and caring. We value safety always and everywhere. We want our work to feel good and do good. At Neste, we nurture a culture where everyone is welcome and feels safe, respected and encouraged to be their unique true selves. 

 
Exciting growth. Transformation brings new possibilities and fosters our courage and curiosity. As a global growing company we support personal development with versatile learning and career opportunities. Collaboration is the key, and we believe in flexible, smart ways of working. 

In addition, our benefits for employees in Finland include, for example, a personnel fund as part of the overall remuneration, good occupational health care, and an extensive membership in a sickness or health insurance fund. We also support leisure time activities, e.g. by offering benefits for sports and culture.

More about the job

Your main responsibilities in creating a sustainable future are

Cyber risk management

• Develop, implement, and maintain the organisation's Cyber Risk Management framework

• Support Business Units and Functions to identify and assess internal and external security risks to the organisation

• Monitor and report the effectivity of the organisation's Cyber Risk Management

• Maintain Cyber risk register

• Train and educate key stakeholders on Cyber Risk Management best practices, policies, and procedures

• Assess risks related to security exceptions and communicate those to key stakeholders

ISMS (Information Security Management System) development, implementation and maintenance

• Contribute to global ISMS development and other cyber security development projects

• Implement and maintain Cyber Security policies, standards and guidelines together with Cyber Security Team members

• Contribute to ISO 27001 based ISMS yearly clock activities together with Cyber Security Team members

The best combination to success in this role

• Bachelor's or Master's degree in business, technology, law, or other demonstrated knowledge

• 5+ years of experience in Cyber Security area

• Proven work experience with corporate risk management or cyber risk management tools and processes

• Strong knowledge of implementation of GRC frameworks, regulations, and standards (e.g., ISO 27001)

• Experience in execution of continuous ISMS activities 

• Ability to analyse risk information and to deploy fit for purpose controls to reduce risks

• Excellent communication and collaboration skills

• Ability to work independently and meet deadlines

• Fluent English, Finnish is a plus

• Responsible attitude with a safety-oriented mindset

Let’s get you started

We look forward to receiving your CV and application with a salary request by June 2, 2024. We will start interviews right away and hire as soon as we find the right person for the position. Do not hesitate to send your application as soon as possible!

If you have any questions regarding the process or the position, please get in touch with Cyber GRC Lead Santtu Erkkilä, +358 40 8283695 on May 20 during 3.30-4.30 pm or on May 27 during 3.00-4.00 pm (EET).
 

The recruitment process will include interviews and possible aptitude assessment. The person selected for the position must pass a health examination including a drug test. A security clearance is obtained with their consent.