About this opportunity:
Do you love being a champion and advocating for breaking down complex cybersecurity concepts in a way that is accessible to non-security professionals, including developers, product managers, and business leaders? We are committed to ensuring the security and privacy of our customers' data and that is at the forefront of our service. We are looking for a Security Architect to help us maintain the highest security standards across our service offering.
We are launching an exciting DevOps initiative that aims to overhaul the way we deliver solutions, using As-a-Service on public Hyper Cloud Providers (HCP) as our vehicle. Our goal is twofold: To thrill our customers by delivering services they love and giving them a competitive edge, while building a “lean and mean” product development organization which will allow Ericsson to scale at profit.
You will be challenged, but you won’t be alone. You will be joining a team of diverse innovators, all driven to go beyond the status quo to craft what comes next.
If you're passionate about fostering modern security practices into product development paradigms, driving change, shaping cutting-edge technology to deliver customer value, and you get a kick about building something entirely new, we want you on board!
What you will do:You will lead the way. As a Security Specialist you will be part of a security team and you will be responsible for designing, implementing, and maintaining robust security best practices in our offerings. Your primary focus will be working with a community of security-minded agile team members directly to develop and integrate security architecture principles and best practices with a Security first Dev(Sec)Ops mindset. Your expertise will be crucial in protecting our customers' data and maintaining trust in our services.
Design, implement, and maintain security controls across our service offerings, including identity and access management, data encryption, network security, and application security.Develop and enforce security best practices for Infrastructure as Code (IaC) tools such as Terraform, GCP Cloud Deployment Manager.Collaborate with the DevOps teams to integrate secure coding practices and automate security testing, vulnerability scanning, and compliance checks within the DevOps pipeline using tools like SAST, DAST, SCA, and container security scanners.Collaborate with the SRE teams to implement monitoring and logging solutions to detect and respond to security incidents in real-time, ensuring swift remediation.Provide guidance and training to development and operations teams on security best practices, secure coding, and the use of security tools.Ensure the service complies with relevant security and privacy regulations (e.g., NIST, GDPR, SOC 2, NESAS etc.).Participate in threat modeling exercises to identify and mitigate risks during the design and development phases.Provide guidance and training to engineering and operations teams on security best practices.The skills you bring: Proven experience as a Security Specialist, preferably in cloud-native Dev(Sec)Ops environments.Experience with cloud security on hyper scale cloud providers , GCP, Azure or AWS.Experience with SaaS-specific security challenges, such as multi-tenancy, IAM, data segregation, encryption technologies, network and API security.Familiarity with microservices architecture and containerization (Docker, Kubernetes).Knowledge of secure coding practices.Experience with security frameworks such as NIST, CIS, and OWASP.Strong leadership and communication skills, with the ability to inspire and guide DevOps teams effectively.Analytical mindset with problem-solving capabilities in the context of cybersecurity challenges.Be collaborative and curious, able to work with all levels of staff with outstanding relationship building and influencing skills.Strong ability to lead and execute on the strategy to scale the security and privacy work across the organization, and not just execute on the deliverables.Passion for lean thinking approaches, automation, and continuous everything with a focus on scalability of software deliverables and of teams/people.
Why join Ericsson?
At Ericsson, you´ll have an outstanding opportunity. The chance to use your skills and imagination to push the boundaries of what´s possible. To build solutions never seen before to some of the world’s toughest problems. You´ll be challenged, but you won’t be alone. You´ll be joining a team of diverse innovators, all driven to go beyond the status quo to craft what comes next.
What happens once you apply?
Click Here to find all you need to know about what our typical hiring process looks like.
Encouraging a diverse and inclusive organization is core to our values at Ericsson, that's why we nurture it in everything we do. We truly believe that by collaborating with people with different experiences we drive innovation, which is essential for our future growth. We encourage people from all backgrounds to apply and realize their full potential as part of our Ericsson team. Ericsson is proud to be an Equal Opportunity and Affirmative Action employer, learn more.
If you need assistance or to request an accommodation due to a disability, please contact Ericsson at hr.direct.mana@ericsson.com
DISCLAIMER: The above statements are intended to describe the general nature and level of work being performed by employees in this position. They are not an exhaustive list of all responsibilities, duties and skills required for this position, and you may be required to perform additional job tasks as assigned.
Primary country and city: Canada (CA) || Ottawa
Job details: Security Specialist