IT Security Architect
Company DescriptionStatkraft has been making clean energy possible for over a century. That is what we offer. 125 years of unrivalled expertise in supplying the world with what it needs most. We envision a world that runs entirely on renewable energy. Because in the fight against climate change, we do not see renewable energy as part of the solution -- we believe it must be the solution. With us, you will shape a career that is truly forward-facing with many amazing opportunities and offerings to match.But there is more work to be done - that is why we need you to join!Job DescriptionOur Cyber Security department is contributing to protect all business areas in Statkraft. We use our expertise within security frameworks, standards, and best practices, as well as our in-depth technical knowledge to understand and support different initiatives and day to day operations. We collaborate with other security domain areas in Statkraft as well as external partners to keep each other informed and protected, and to further our profession and skillset.Our department consists of specialists passionate about their field and thriving in the dynamic and complex environment -- and we are currently looking for a new colleauge to strengthen our IT Security Architect team!Your Role:The IT Security Architect role in Statkraft relies on good communication skills, influencing the positive and mature IT security posture throughout the organization and using the security mandate to protect and improve the IT security services and IT architecture.You will report to Head of Cyber Security Architecture and be part of the Cyber Security Architecture Department, and your tasks will include the following:Assess and design secure and compliant solutions with customers, bringing security requirements and best practice early into the design process, and monitor their implementationBuild relationships and collaborate with stakeholders, system owners, IT specialists, and process control specialists to ensure all visions are alignedImplement administrative and technical security controls throughout the global IT and process control environmentPromote security culture and awareness in StatkraftDevelop and maintain security standards, guidelines, and best practices for secure development and testing across different platforms and technologiesEvaluate IT and process control infrastructure changes and requests that impact securityProvide practical security requirements to projects and activities that helps both the end user and the organization to balance security - based on established security policies and standardsAssist with internal and external security audits and assessments, and facilitate third party security assessments and penetration testingCollaborate with GRC team on risk assessments, mitigations, and subject matter expertiseCollaborate with CSIRT team toensure that findings are addressed through robust processes, IT, and process control security architectureContinously improve security poilcies and processes based on your experience, observations, and research within the cyber security fieldQualificationsPassionate about cybersecurity and have knowledge about threats to critical infrastructureTechnical background in IT security, and development or operationsGood knowledge within one or more of the areas in IT security and process control security, including LAN/WAN networks and communication security, software development security, identity and access management, and security operationsKnowledge about Zero Trust Architecture and conceptsWork experience with security frameworks and standards (e.g. ISO 27001, NIST CSF, and CIS Controls), and/or risk assessments and risk management process is an advantageWork experience with security- and penetration testing is an advantageStructured, ethical, professional, proactive, and ambitiousYou are fluent in English and Norwegian, both oral and writingAdditional InformationWhat we offerUnlimited learning opportunities at various levels of the organizationThe chance to grow your career alongside a truly global network of experts, leaders, specialists, and graduates from different countries and backgroundsThe opportunity to work somewhere with pride, and be able to honestly say “My work is contributing to saving the planet”A work culture that puts emphasis on the individual, offering flexible working solutions, and work-life balance principlesStatkraft offers competitive terms of employment and benefit schemes, and we’re a trusted employer that puts the safety of our people first. We believe that a safe and healthy working environment is a matter of choice, not chanceStatkraft manages critical infrastructure and services in several countries. We conduct background checks on qualified applicants before hire and in this role you must qualify for Norwegian and Swedish security clearance and authorization. Necessary background check according to Norwegian and Swedish regulatory requirements is needed for this position.Statkraft's vision is to renew the way the world is powered. To navigate the complex journey ahead, we need every voice at the table. We therefore work actively to be a diverse and inclusive workplace and welcome all applicants regardless of background, gender, age, sexual orientation, religious belief, ethnicity, nationality or disability.Application deadline: 12. August 2024. Applications will be evaluated after the deadline.Location: The position is located at our main office in Lilleaker, Oslo, Norway.**Contact:**For more information about the process, please contact Celina Nybråten, Talent Acquisition Advisor, celina.nybraten@statkraft.com. Adresse: Oslo
12.08.2024
Oslo