Senior Security Engineer, 5+ months in Malmö, SE (Mainly onsite)
IT & Telekom
Detta uppdrag är inte längre tillgängligt.
We are looking for:
Someone who can help IPEX ensure that security is considered and measures are implemented as part of product development (DevSecOps).
The person will be primarily working with security and data privacy tasks for our product development teams.
Background:
IPEX delivers solutions to retailers in over 60 markets worldwide, over 400 stores, and our digital channels. All solutions are made to help customers and co-workers in all customer meetings, from a mobile phone to the largest store in the world.
In your role, you will:
• Be part of a diverse, international, and knowledgeable organization with great colleagues
• Be expected to be driven by a customer value mindset and have a data and end-to-end perspective by understanding the business, iterative exploration, agile development, and continuous improvements
• Be expected to excel in communication with colleagues and collaborators across the world
• Be expected to excel in English
The scope of the consultant services is to assist in:
• Work together with IPEX Cyber Security leader, developers and architects to act as a sounding board, give input, review designs and guide development towards being secure products
• Help teams with planning, scoping and coordination of vulnerability scans and third-party security assessments (e.g. penetration tests and configuration reviews)
Support teams with threat modelling and attack surface analysis as well as triaging and coordinating resolution of security vulnerabilities.
Support teams with periodically reviewing their business impact assessments, data privacy impact assessments, and digital risk assessments.
Requirements:
Desired knowledge, experience, competence, skills etc:
More than 10 years of experience with at least 3 years in the security area.
Following competencies to be fulfilled:
1. Knowledge of cloud security
2. Knowledge of security protocols, standards, and frameworks (e.g. OWASP, NIST CSF)
3. Understanding of threat modeling and risk assessment
4. Familiarity with compliance and regulatory requirements (e.g. GDPR, HIPAA)
5. Knowledge of secure coding practices and principles (e.g. Hybrid code reviews, Secure by Design, DevSecOps)
6. Experience in vulnerability management and penetration testing
7. Skill in analyzing and mitigating security incidents and breaches
8. Familiarity with privacy by design and data protection principles
9. Experience working with agile software development methodology
Following competences are preferred to be fulfilled:
1. Worked with big retail stores
2. Self-development skills to keep up to date with fast-changing trends
3. Enjoy solving problems and create efficiency in the development
4. Teamwork experience
Start Date: Asap
prolongation expected
Primary Worksite: Malmö
Travel required outside primary working site: No
Overtime or on/call expected: No
Remote/off-site work possible: Mainly work on-site.
Workload in %: 100%
Someone who can help IPEX ensure that security is considered and measures are implemented as part of product development (DevSecOps).
The person will be primarily working with security and data privacy tasks for our product development teams.
Background:
IPEX delivers solutions to retailers in over 60 markets worldwide, over 400 stores, and our digital channels. All solutions are made to help customers and co-workers in all customer meetings, from a mobile phone to the largest store in the world.
In your role, you will:
• Be part of a diverse, international, and knowledgeable organization with great colleagues
• Be expected to be driven by a customer value mindset and have a data and end-to-end perspective by understanding the business, iterative exploration, agile development, and continuous improvements
• Be expected to excel in communication with colleagues and collaborators across the world
• Be expected to excel in English
The scope of the consultant services is to assist in:
• Work together with IPEX Cyber Security leader, developers and architects to act as a sounding board, give input, review designs and guide development towards being secure products
• Help teams with planning, scoping and coordination of vulnerability scans and third-party security assessments (e.g. penetration tests and configuration reviews)
Support teams with threat modelling and attack surface analysis as well as triaging and coordinating resolution of security vulnerabilities.
Support teams with periodically reviewing their business impact assessments, data privacy impact assessments, and digital risk assessments.
Requirements:
Desired knowledge, experience, competence, skills etc:
More than 10 years of experience with at least 3 years in the security area.
Following competencies to be fulfilled:
1. Knowledge of cloud security
2. Knowledge of security protocols, standards, and frameworks (e.g. OWASP, NIST CSF)
3. Understanding of threat modeling and risk assessment
4. Familiarity with compliance and regulatory requirements (e.g. GDPR, HIPAA)
5. Knowledge of secure coding practices and principles (e.g. Hybrid code reviews, Secure by Design, DevSecOps)
6. Experience in vulnerability management and penetration testing
7. Skill in analyzing and mitigating security incidents and breaches
8. Familiarity with privacy by design and data protection principles
9. Experience working with agile software development methodology
Following competences are preferred to be fulfilled:
1. Worked with big retail stores
2. Self-development skills to keep up to date with fast-changing trends
3. Enjoy solving problems and create efficiency in the development
4. Teamwork experience
Start Date: Asap
prolongation expected
Primary Worksite: Malmö
Travel required outside primary working site: No
Overtime or on/call expected: No
Remote/off-site work possible: Mainly work on-site.
Workload in %: 100%
Period
2024-04-01 -
2024-08-31