Red Team Operator

Job ID: 21917 
 

We are looking for an Expert with the Red Teaming skills and knowledge of cyber security area, to help out Offensive Testing team in Cyber Security department get fast paced in their undertakings. This is an opportunity for you to work in a fast-pacing environment and protect the bank.

Machine learning, robotics, cloud computing. We’re harnessing the power of technology to reinvent the future of banking. A digital revolution is underway – joining us puts you at the heart of it. Working with skilled, international teams in a fast-paced and inspiring working environment, you’ll play a part in making us truly digital.

More than just a Nordic bank, we’re one of the largest IT employers in Tricity and Warsaw. You’ll have lots of opportunities to expand your abilities and advance your career. Will you help us lead the way in transforming the future of banking?

Your future responsibilities

You’ll join Cyber Security department, where we protect the bank.

What you’ll be responsible for:

• Performing the internal, in-house Red Team exercise, including preparation, execution and reporting phase
• Overseeing the external vendors for the offensive security exercises that are executed in the cooperation with the third party vendor
• Managing the Regulatory based Red Team engagements as a member of the White Team
• Cooperating with the Blue Team and various stakeholders during the Purple Teaming engagements
• Preparing, executing and reporting offensive security projects like Security Control Testing, War Gaming, Attack Path Mapping
• Being a subject matter expert in the Offensive Security area

The role is based in every location.

Who you are

Collaboration. Ownership. Passion. Courage. These are the four key values that guide us in being at our best. We imagine that you enjoy learning and are excited about bringing your ideas to the table. You’re dependable, willing to speak up – even when it’s difficult – and committed to empowering others.

Your profile and background:

• 3+ years of professional experience
• Hands-on experience in Red and Purple Team exercises
• Performing Penetration Testing engagements
• Practical experience with Command and Control tools, writing exploits, fuzzing, breach attack simulation tools
• Experience in a regulatory based Red Teaming (e.g. TIBER, CBEST, iCAST, FEER, AASE)
• Working experience with Mitre’s ATT&CK framework
• Good analytical skills
• Ability to work independently
• Proficiency in explaining complex and technical problems to a business oriented audience
• Solid understanding of:
  • Windows and Linux operating system
  • Networks/networking
• Familiarity with scripting languages (e.g. Python, Bash, PowerShell, Perl) and coding languages (e.g. C/C++, Java, C#) is a must
• You have good English written and spoken communication skills

If this sounds like you, get in touch!

Next steps

Submit your application no later than 15/05/2024.

At Nordea, we know that an inclusive workplace is a sustainable workplace. We deeply believe that our diverse backgrounds, experiences, characteristics and traits make us better at serving customers and communities. So please come as you are.
 

For candidates in Sweden only - For union information, please contact finansforbundet@nordea.se or SACONordea@nordea.com.

For candiadtes in Poland only - Please include permit for processing personal data in CV as following:

In accordance with art. 6 (1) a and b. Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) hereinafter ‘GDPR’. I agree to have: my personal data, education and employment history proceeded for the purposes of current and future recruitment processes in Nordea Bank Abp.

The administrator of your personal data is: Nordea Bank Abp operating in Poland through its Branch, address: Aleja Edwarda Rydza Śmiglego 20, 93-281 Łodź. Your personal data will be processed for the recruitment processes in Nordea Bank Abp. You have a right to access your personal data, right to rectify and right to delete. Disclosing the personal data in the scope specified by the provisions of Polish Labour Code from 26 June 1974 and executive acts are mandatory. Providing personal data is necessary to conduct the recruitment processes. The request for the deletion of your personal data means resignation from further participation in recruitment processes and causes the immediate removal of your application. Detailed information concerning processing of your personal data can be found at: https://www.nordea.com/en/doc/nordea-privacy-policy-for-applicants.pdf.

We reserve the right to reply only to selected applications.