Senior Security Engineer, Vulnerability Management

At Konecranes, we believe that great customer experience is built on the people behind the Konecranes name. Everything we do, we do with passion and drive. We believe diversity drives business success and is the foundation for our growth. We welcome different backgrounds and skills that enrich our community and we promote a place where we can ALL be ourselves. This is what makes Konecranes a unique place to work.

Senior Security Engineer (Vulnerability Management) is a new global role within our organization. We're seeking an individual who can bring their expertise in security to guide our R&D and product development teams. You will play a crucial role in enhancing our cybersecurity posture, establishing a vulnerability management and handling process for our products, ensuring compliance with the EU Cyber Resilience Act, and strengthening our product security incident response capabilities.

Your key responsibilities:

• Establish a comprehensive vulnerability management program to identify, assess, prioritize, and remediate security vulnerabilities across our product portfolio
• Development of security scanning practices
• Help pilot and implement security scanning tools
• Ensure the company's cybersecurity practices align with the requirements of the EU Cyber Resilience Act
• Product incident response enhancement by working with cross-functional teams
• Help build DevSecOps pipelines for continuous security scanning
• Provide relevant training and raise awareness about security policies and best practices

You will work closely with product teams globally and support them in vulnerability management practices. Work is focused on product security and product development teams, ranging from cranes, ports equipment, lift trucks, cloud systems, IoT, etc. You will be a trusted security advisor for our central organization as well as the product teams, and a go-to person in case of security vulnerability handling queries and consulting needs, along with product incident response responsibilities. You will be supported by our incident response lead in incident-related work.

In this role you will report to Basit Syed, Head of Product and Application Security. The role is based in Hyvinkää or Espoo, Finland, but we believe that flexibility with remote & hybrid work is a part of our modern ways of working.

What should you bring?

• A degree in engineering
• 3-5 years of experience with vulnerability scanning and management for products
• Experience on relevant security standards, such as ISO 27001 or ISA/IEC 62443 is good to have
• Proficiency with vulnerability management methodologies and tools
• Hands-on experience with security testing

To succeed in the role, you are a systematic, hands on and self-driven person with can-do attitude and willing to help others.

What we offer to you   

As a Senior Security Engineer (Vulnerability Management) at Konecranes, you are truly able to make an impact and initiate security related principles and practices – and take us forward in our journey. Product security testing in manufacturing industry is an emerging field and you have an opportunity to make Konecranes an industry leader. With us you will be able to work with tangible and world leading products and services – from software enabled solutions to IoT and huge harbor cranes. In this global role you get to work with colleagues and business areas around the world. We believe in curiosity and in a passion for learning – which means that you will also get continuous learning and self-development opportunities at Konecranes.

Want to learn more about Konecranes and what your future colleagues have to say?  Our people - The key to Konecranes' success

Interested?

If you feel inspired and excited about this role, please submit your application in English by 30th of April, 2024, at latest via Apply -link below. We appreciate early applications as we will start reviewing candidates right away and the position is filled once the suitable candidate is found.

For further information about the role, please contact Kristiina Vink, Talent Acquisition Coordinator (kristiina.vink[at]konecranes.com)

Konecranes is a global leader in material handling solutions, serving a broad range of customers across multiple industries. We consistently set the industry benchmark, from everyday improvements to the breakthroughs at moments that matter most, because we know we can always find a safer, more productive and sustainable way. That's why, with 16 000+ professionals in over 50 countries, we are trusted every day to lift, handle and move what the world needs.

Konecranes is committed to ensuring that all employees and job applicants are treated fairly in an environment which is free from any form of discrimination.