NI is looking for an experienced Cybersecurity professional to fill the role of Customer Security Manager who can act as the point of contact for customer security related issues, as well as understanding regional security & privacy requirements that may impact NI products & services.

This role support NI business with a particular focus on aligning rapidly evolving customer security needs, including regional security regulatory requirements with Nokia’s and NI’s security practices, while proactively driving internal changes to meet future security demands. You will work closely with a network of security professionals across Nokia, collaborating with internal experts and customer-facing teams to address customer security needs effectively.

As part of our team, you will:

Act as a Subject Matter Expert (SME) on security & privacy regional regulations, including CSL, EU-CRA, RED, NIS2, UK-TSR, ITSAR, and emerging regulations Coordinate with NI Market Organizations and Business Centers to understand customers’ demands for improved product & services security, support assessment and impact analysis of new regional security & privacy regulations. Coordinate cross team with NI Privacy Lead. Assist in negotiation of security clauses in supply-contracts and statements of work (SoW) for services projects with customers and customer security teams. Coordinate with Customer Security organization to perform gap and impact analysis for regulatory and contractual requirements for compliance with security and privacy requirements impacting NI products or services. Assist in the coordination of reporting of high-profile vulnerabilities related to NI products to customers. Provide NI BG support for customer requests for audits and assessments and co-ordinate the necessary activities in Nokia.

 

You have:

Bachelor’s degree in computer science or related degree 5+ years of experience in product security compliance roles Technical proficiency with secure product development skills Experience applying security engineering in an agile development environment Experience providing security assurance support to engineering and product management teams Ability to analyze and solve complex problems Strong oral and written communication skills, including customer facing interactions. Demonstrated ability to work and collaborate within globally distributed development teams, as well as externally with Nokia service provider customers. Ability to enhance team learning environment with coaching and mentoring

It would be nice if you also had:

Knowledge and experience with Nokia DFSEC Compliance Tool and Nokia Vulnerability Assessment and Management System tools Exposure to globally recognized security certifications, such as Common Criteria, GSMA NESAS, FIPS, NIST. Knowledge of security requirements for cloud native and containerized products Knowledge and Experience in the implementation and management of FOSS software components through their lifecycle. Knowledge of securing web applications, mobile applications and network elements

Desired Industry Certifications:

(ISC)2 Certified Information Systems Security Professional (CISSP) EC-Council, Certified Application Security Engineer (CASE) Interprets internal and external business challenges and recommends best practices to improve Nokia’s security, privacy and compliance-related processes and practices. Has in-depth organizational and relevant market knowledge and uses understanding on how relevant areas can be integrated to achieve objectives. Contributes to strategic decisions within professional area. Solves complex problems based on sophisticated analytical thought and complex judgment. Contributes to development of concepts to determine professional direction of own organisational unit. Acts as a professional leader for staff / projects / taskforces, often the most senior specialist in a team, who serves as best practice resource within own organisational unit and / or is recognised as an expert within the same professional area in the business. Often leads projects with moderate resource requirements, risk and complexity, handles day-to-day staff management issues, including resource management and allocation of work.