Senior IT/OT Security Engineer - Applications

SKF has been around for more than a century and we are one of the world’s largest supplier of bearings and related services and solutions for rotating equipment. Our products are found everywhere in society. In fact, wherever there is movement, SKF’s solutions may be used. Through innovation, we develop solutions for rotating equipment that offer our customers a competitive edge while strengthening our position as a market leader.

We have been pushing the boundaries of bearing technology for more than a century. Would you like to join us in shaping the future of motion?

To join our growing team, we are now looking for a


Senior OT/IT Security Engineer
for Applications in Digital Manufacturing


What you can expect in this role
Your main responsibility will be to ensure that we organize, design, and implement security practices, processes, and technologies. This will mitigate risks arising from the use, process, storage, and transmission of information used in industrial/OT environments – from a people, process, and technology perspective. You will also define consistent secure software development lifecycle practices for all SKF digital manufacturing technology projects throughout the planning and delivery cycles. Furthermore, you will:

• Ensure end-to-end security of SKF digital manufacturing products by hands-on testing, hypothesizing threats, supporting development teams remediating risks upfront and championing secure implementation efforts
• Perform security architecture and low-level application security design review involving data protection, authentication and authorizations, web application security and network security
• Improve secure coding practices, application security requirements, automation, training, and metrics as well as integrating threat modelling practices into the software development Lifecycle
• Develop and optimize processes to improve software development efficiency in the consumption of security development practices, and help build secure products and standards around emerging technologies

What we are looking for
For this job you need to have a genuine interest in technology, in combination with experience in moving and implementing secure development practices in SDLC (SSDLC) and the ability to effectively integrate security into a developer’s world. In addition, we need you to have:

• MSc in Computer Science/Mathematics/Physics/Engineering or similar, combined with professional experience from working with information security, application security related to the industry’s security best practice and IT/digital transformation projects in an international environment
• Deep understanding of OWASP, CWE 25, data protection, access management, software vulnerabilities
• Knowledge of code management systems, CI/CD systems (e.g., Azure Pipelines, Jenkins), Docker, Kubernetes, microservice architecture, OAuth 2.0, OpenID Connect

As you will collaborate with product development and solution teams to organize software security risks and to achieve cyber security software security program goals, you need to have solid interpersonal skills, with fluency in English. We also expect you to have established analytical and problem-solving skills, with ability to identify solutions to unusual and complex problems.

Once onboard, your home will be the Future Factory team. Our mission is to transform and equip the SKF Group Manufacturing footprint with digital solutions, skills, and knowledge to strengthen World Class Manufacturing for competitive advantage.

You will enjoy working here if you have a genuine enthusiasm for technology and are a resourceful problem solver, good at networking and collaboration. We are looking for someone who wants to bring continuous change that leads to improvements in the way we do business, and who can both grasp technical details as well as think strategically around technology-based business transformation.

Additional information:
Preferred location: Sofia (Bulgaria), Gothenburg (Sweden) or any other major SKF manufacturing site in Europe.

For information and questions regarding the recruitment process, please contact Danijel Sjogren, Recruitment Expert at SKF Group Recruitment Center, at danijel.sjogren@skf.com.


How to apply
If you are interested and meet the above requirements, please submit your application with CV and cover letter (in English) no later than January 9, 2022. Please note that we will screen candidates continuously during the application period.