Apply now »

Senior Cyber Security Defense Practice Lead

Helsinki, FI, 500 København S, DK, 2300 Helsinki, FI, 100

Job ID: 2094 

The Cyber Security Intelligence and Analytics team is looking for a Senior Cyber Defense Lead. The role is focused on enterprise-wide intelligence activities specifically defining and providing early warnings of advanced cyber threats targeting the Bank.  In addition this role will act as the program lead for deception technologies intended to distract, slow down and trap threats.   


This individual will help the organization understand internal and external threats in network systems and enrich investigations. Use your experience to define, develop and implement trap mechanisms. Build with automation and incident orchestration in mind.  

About this opportunity

Welcome to the Cyber Security team and specifically the Cyber intelligence Analytics team. We add value by ​improving and verifying the effectiveness of Nordea´s security posture. As a Defensive Practice Lead you will play a critical role in ensuring that incident responders gain a competitive edge on looming attacks and that fog of war is deployed to slow down ongoing anomaly activity. The individual will have opportunity to influence on security strategy and tactical decision making. 

What you’ll be doing:

  • Define, develop and provide early warning detection systems. Collaborate and share knowledge with incident responders.  

  • Define and provide deception technologies using trap concepts traps for example low/high-interaction honeypots of different nature.  

  • Conduct strategic analysis of cyber security threats 

  • Mine available data sources for additional information and correlation  

  • Interface with external security researches and establish collaboration 

  • Provide strategic input and advice to the head of Head of Cyber Security Infrastructure.  

You will join a vibrant and ​dynamic team with great opportunities for continuous professional growth. We support and push each other to be better. The role is based in Helsinki; Copenhagen; Stockholm .

Who you are

Collaboration. Ownership. Passion. Courage. These are the values that guide us in being at our best – and that we imagine you share with us.  

To succeed in this role, we believe that you:

  • Understand and execute on technical cyber security 

  • Can operationalize asymmetric defence concepts.  

  • Can leverage infrastructure-as-a-code 

  • Be able to communicate hard to grasp concepts in a way that makes sense for different audiences 

  • Be a creative problem solver  

  • Understand data science concepts 

Your experience and background: 

  • Show an understanding of the common body of knowledge in cyber security 

  • Have an understanding of Cyber Security posture, technologies, kill chains, threat detections, adversary tactics and techniques (MITRE), Common Vulnerability Scoring System (CVSS) and more. 

  • Have experience from the field  

  • Have good presentation skills 

  • Professional English skills both spoken and written 

  • Experience of Agile methods is an advantage 


If this sounds like you, get in touch!


Next steps

Submit your application no later than 30/06/2022. For more information, you’re welcome to contact Johan Oscar Arlehamn.

At Nordea, we know that an inclusive workplace is a sustainable workplace. We deeply believe that our diverse backgrounds, experiences, characteristics and traits make us better at serving customers and communities. So please come as you are.


Please be aware that any applications or CVs coming through email or direct messages will not be accepted or considered.

Department:  IT/Technology

Learn more about us

Learn more about us

How we recruit

Who we are

Sustainability in Nordea

Our purpose and values


Apply now »