Senior Security Engineer

SENIOR SECURITY ENGINEER, CYBER SECURITY - GROUP DIGITAL, INGKA GROUP


WHY WE WILL LOVE YOU
You are genuinely curious about the IKEA business and always strive to understand and contribute to our vision. You always seek the necessary context to take best practices beyond a cliché into sound business practices. You wish to work with the best people in security on a multi-national stage.
We believe that you are passionate to drive, explore and understand how things are built and how they break. Where theoretical knowledge helps you, it is backed up by practical skills learned and honed beyond what can be taught. You excel when confronted by an open-ended situation. You have powerful analytic capabilities as well as an ordered and structured approach to problem solving. You are pragmatic and ensure that we enable business to flourish, today and tomorrow.
You bring one or more of the following competence(s) to the table:
• Partnering with product tech teams to get intricate system knowledge and understanding of end-to-end processes to identify vulnerabilities in the complete lifecycle.
• Taking a leading role in continuously developing our penetration testing and incident detection capabilities to secure the best possible value and to be an enabler to the business.
• Taking a leading role in developing and working in incident response for high impact incidents, working with numerous teams and senior leadership to ensure a proper response is taken and that regulatory related activities are executed as required.
• Taking a leading role in developing our detection capabilities, working with teams to secure that mechanisms are in place for attacker techniques tactics and procedures, and that remediation are automated when able.


We believe that you also have a good understanding of security in a broader context:
• Security in the Cloud
o DevSecOps
o Cloud native security frameworks and controls
o Hands-on experience of building large-scale, secure cloud-based solutions
o Embedded systems, IoT and Hardware based attacks
o Cryptography
• Compliance
o Laws & Regulations (e.g. GDPR, PCI-DSS, China CSL etc.)
o Systematic work with internal frameworks
o Large-scale co-ordination of technical teams
• Knowledge of Security Software Development Lifecycle (Secure SDLC)


You are required to have a good understanding in agile fundamentals and be inspired by working in a product-oriented organization.
YOUR RESPONSIBILITIES
To be successful in the role, we expect that you have a proven track record of the relevant security domains in combination with the capability to communicate this to stakeholders in a clear and concise way. We believe that you are used to managing highly confidential information and to act with a strict level of professional discretion.
You will be joining the security and privacy incident response and security testing team within Ingka Group. The team is responsible for our security and privacy incident response globally, our internal penetration testing capability and our responsible disclosure and bug bounty program (bugs.ikea.com).
The focus for this position is to take a leading role in continuing the advancement of our penetration testing and incident response capability, including to work with colleagues in other security and tech teams to security the proper detection process and controls are in place.
We work together to achieve our goals and always strive to utilize the talent of every individual optimally. We develop our people and our business equally to ensure that we can continue to provide a better everyday life for the many people for a long time to come. We believe that continuous learning is important to grow, both as persons and as professionals. To empower ourselves to thrive, we're able to attend both trainings and conferences.
Join us on a journey where the road is truly more important than the destination. Our guiding star is the better everyday life of the many people and our impetus is our desire for constant renewal. Come help us shape the map of our future by seeing things a little differently.


We now seek security engineers across multiple security domains that can help us build the future of a digital IKEA. Our ethos is security and privacy by design. We expect security to be a built-in quality aspect, not a bolted-on property.


This position is placed in Malmö. The selection process will take place continuously
QUESTIONS AND SUPPORT? LET'S CONNECT!
If you have questions regarding the role, please contact Technology Capability Product Owner, Martin Svensson, martin.svensson1@ikea.com. If you have questions regarding the recruitment process or other practicalities, please get in touch with Sam Foged Jensen at sam.foged.jensen@ikea.com.


FYI: This recruitment is being handled in a new recruitment system where you as a candidate now have your own recruitment page. You can now track the status of your application and edit attachments even after submitting your application. Please note that the candidate information we may have saved in the previous recruitment system is not connected to the new platform. You will be asked to update your profile with new information.


We look forward to learning more about you!