Are you a highly skilled cyber security professional looking for new challenges? Would you like to secure a smoother everyday life for thousands of people in Finland by offering secure digital services to consumers and corporate customers? If yes, then we might have the perfect job for you!
Would you be our new Security Test Engineer?
As Security Test Engineer you perform security testing of applications, front-end and back-end systems, including vulnerability assessments and penetration testing. You get to have responsible for the entire security testing process, combining advanced manual techniques with state-of-the-art automation, from initial mapping and analysis of an application’s attack surface, to finding and exploiting security vulnerabilities.
Who we are and what we do? TecHub unit includes experienced developers, architects, test engineers and other cyber security professionals. We collaborate to deliver high quality services and solutions to other business units and eventually our customers. We work in agile teams and have a low hierarchy. Since you will be working closely with internal and external colleagues with very different backgrounds, you get to use your collaboration skills and an open-minded attitude. Our projects can be very different, therefore you are ready to work with diverse technologies and domains stretching from mobile to web applications, databases, back-end services.
Your key responsibilities
Perform security testing and vulnerability assessment activities of web and mobile applications, front-end and back-end systems
Automate security testing when possible
Perform threat modelling and risk assessment and also participate in threat intelligence activities
Write reports on security testing results, explain the identified vulnerabilities and suggest remediation actions
Develop and document secure design principles and secure coding practices to support the development teams
Provide security guidance for development teams and collaborate with external security testers in case of independent security audits
Collaborate with developers, architects and functional testers to improve the secure software development process
Perform secure code reviews and review design documents from a security viewpoint
Cooperate in security incidents and vulnerability management activities
What you should bring with you
You have experience with modern tools for application security testing such as vulnerability scanners and static analysis solutions.
Excellent understanding of SSDLC concepts and security testing processes and methodologies
Sound knowledge of common software vulnerabilities and attack methods
Understanding of OWASP Top 10
Knowledge of cybersecurity frameworks (such as NIST Cybersecurity Framework, ISO 27001, ISF Standard of Good Practice for Information Security)
Experience with static application security testing (SAST), dynamic application security testing (DAST), interactive application security testing (IAST) solutions
Experience with cloud architecture and how applications and data can be secured in the cloud, particularly AWS
Excellent organizational and collaboration skills
Strong verbal and written communication skills in English (Finnish knowledge is strongly appreciated)
What we offer you?
We are one of the biggest employers in Finland. Our transformation journey towards our vision – a modern delivery and fulfillment company – will provide you with a fantastic opportunity to develop your own career and expertise through a wide range of tasks, development projects and training programs. We will provide you with a comprehensive introduction to your role and coaching and training for your future development. We offer Epassi culture, sports and commuting benefits and an excellent gym and group sports at our modern office in Ilmala, Helsinki. We are working on a flexible hybrid model but the position is based in Helsinki.
Would you be our new colleague? Please send your application (CV and cover letter) to the Workday career site by 5th of February 2023. We want you to know that we will start conducting interviews right away and will make hiring decisions as soon as a suitable candidate is found.
We look forward to hearing from you!