Tasks and Responsibilities:
1. Co-responsible for defining and implementing the security architecture for digital products and solutions in close alignment with Cybersecurity responsible.
2. Support development teams in the handling of security topics. (secure development lifecycle, development best practices, creation and maintenance of threat models etc.)
3. Review of security aspects in product implementations (including security-focused source code reviews)
4. Support of DevOps/operations teams (review of security aspects in CI systems, disaster recovery strategies etc.)
5. Co-responsible for conducting risk assessments
6. Responsible for defining mitigations/countermeasures based on the outcome of threat models/risk assessments
7. Technical support in the validation of security control and mitigation implementations
8. Technical support of the creation and maintenance of security-related product manuals
9. Technical support of the incident handling process

Requirements:
1. University degree in STEM (science, technology，engineering and mathematics）
2. Professional experience as SW Developer, some years background in object-oriented programming languages
3. Experience handling security aspects of web development projects including vulnerability scans, software component vulnerability management/analysis and setup of security controls (TLS, security headers, authentication, authorization etc.)
4. Good knowledge of cybersecurity terms and concepts
5. Experience handling operational aspects of virtualized/containerized web applications
6. Java development experience
7. Embedded development experience
8. Experience with IEC 62443 or ISO 27001