SecOps Engineer

Summary

Join Vattenfall's Security Operations Team (SecOps) as a SecOps Engineer in data security to contribute to the company's commitment to fossil freedom. You will play a key role in enhancing Vattenfall's security posture by mitigating vulnerabilities, monitoring key risk indicators, and automating security implementations. The position involves collaborating with various teams to harmonize IT security processes and improve data center security. You will also be responsible for creating automation use cases, isolating servers with unsupported operating systems, and providing technical guidance and training to team members. This role requires experience in SecOps or cybersecurity, specifically within data center environments, and a strong understanding of data center infrastructure and security requirements. The position offers an exciting and challenging opportunity to broaden your expertise and contribute to a sustainable energy future.

Requirements

• Experience in SecOps or cybersecurity roles, specifically within data center environments
• Knowledge of data center infrastructure (servers, storage, networking) and its associated security requirements
• Understanding of data center network security, including VPNs, firewalls, and access control mechanisms
• Experience with cloud based or on-prem environments
• Administrative experience of Windows/*NIX operating systems
• Experience with vulnerability management tools and techniques, including patch management and vulnerability scanning
• Excellent problem-solving and very good analytical and conceptual skills
• Strong and effective communication and collaboration skills
• Independent, structured and systematic way of working and enjoy working in a team in an interdisciplinary environment
• Very good written and spoken English
• Willingness to undertake occasional business trips

Responsibilities

• Coordinate security implementations (i.e. vulnerability mitigations) for data center environment
• Monitor globally defined Key Risk Indicators and mitigate them
• Create automation usecases (Automation Zone)
• Isolation of servers with unsupported OS (LCM)
• Proactively look for the most critical vulnerabilities and drive mitigation process
• Security reporting analysis in order to mitigate compliancy/security misconfiguration
• Act as a SME for security topics to other Teams
• Follow/analyze Vattenfall Security Standards and internal IT processes to harmonize work among different platforms and environments (*NIX/Windows, on-prem/cloud)
• Stay informed about recent developments on new security technologies and assess their applicability to the organization
• Provide technical guidance and training to other team members
• Develop and maintain SecOps internal and external knowledge base
• Participate in projects, audits and compliance assessments
• Support Data Centre Teams with coordination of security topics
• Support Automation Team with development of automation scripts and use cases
• Cooperate with AppOps Team to work on evergreen update solutions for applications
• Helping to define security baselines and initiate changes
• Support the line organization with execution and broaden IT Security knowledge
• Support SecOps internal Team members in other areas like firewall implementation process for cloud or data security topics (HSM)

Preferred Qualifications

• Familiarity with NSX-T virtualization technology
• Scripting in Python/Ansible
• Familiarity with HSM (e.g. Hardware Security Modules, TPM, TEE, smartcards) or key management technologies and their integration
• Knowledge of implementation encryption and key management to ensure the security of data in transit and at rest
• Basic understanding of cryptographic concepts, standards and tools (encryption, digital signatures, authentication, X.509/PKI) and related protocols (e.g., SSL/TLS, KMIP, PKCS#11)

Benefits

• Good remuneration
• Attractive employment conditions
• Opportunities for personal and professional growth
• Excellent primary and fringe benefits
• Great work atmosphere
• Hybrid working
• Excellent work-life balance