Voit hakea tätä työpaikkaa osoitteesta https://emp.jobylon.com/applications/jobs/91646/create/
- Ilmoituksen julkaisupäivä 14.9.2021
- Työsuhde Vakituinen
- Työn tyyppi Kokopäiväinen
As our Information Security Specialist (R&D), you will work together with developers, IT and security to ensure that our developers have the best tooling at their disposal, properly secured and that we stay on top of threats to our software development and delivery systems.
Within the security team, your closest fellows with be the Software Security Lead, and the Information Security Managers in charge of IT Security Operations and Incident Response. You will be liaising with IT, product security and quality leads and the development teams.
Producing commercial software-based products on an industrial scale involves a complex chain of highly specialized IT. Some are closely interlinked and constitute worryingly large blast zones, some can safely splash water on the walls in their tanks. F-Secure produces both cloud-based and client-based solutions and they all churn out several rounds of daily updates, which further complicates the act of securing the development infrastructure. And yet, it would be exactly your job to get close to where the magic happens and get your hands dirty in understanding where the CI/CD environment meets our security requirements and what can be done with the parts that aren't.
What are we looking for?
You are a subject-matter expert in IT security and have familiarity with software development tooling and methods and cloud technologies. Particularly, you understand how versioning systems such as Bitbucket and Git work, have appreciation to the complexity of setting up compiler pipeline systems like Jenkins, Team City and find your way around AWS. We have separate maintainers for our software and release mechanisms and IT will take care of the day-to-day operations of our infrastructure. But they rely on your insights and navigations skills to set the direction and velocity of their security work right.
If you read of the breach to SolarWinds CI/CD environment and immediately begun thinking ways to make similar attacks more difficult to accomplish, easier to detect and in a number of ways futile for the attackers, we want to hear from you.
If you have always insisted that developers need Local Admin privileges for installing Notepad++, save us the trouble and don't apply.
What will you get from us
You will join our multidisciplinary internal team of seasoned security professionals and get the privilege to serve the whole global F-Secure family of companies.
Ilmianna kiinnostuksesi tai vinkkaa kaverille 30.9.2021 mennessä! Hakemuksen voit täyttää "Tutustu työpaikkaan" -linkin kautta.
Lisätietoja saat Erka Koivunen