Security Engineer
Are you ready to be part of an innovative Research & Development team?
Kongsberg Defense & Aerospace AS (KDA) is a business area in the Kongsberg Group. KDA is Norway's leading supplier of defense and aerospace-related systems. We develop and deliver command, control and communication systems, surveillance systems, missiles and are a manufacturer of advanced composite products for the aircraft and helicopter market.
Kongsberg Defence & Aerospace (KDA) is strengthening its cyber security department and is looking for someone with a passion for research and development in operational technology and industrial cyber security.
Are you ready to be part of an innovative Research & Development team? We are seeking an ambitious and skilled security engineer with background in system development and software engineering. In this role, you will lead the development and operation of a cutting-edge cyber-physical test range, advancing our focus area and mission in this critical field.
Kongsberg Cyber Security Center (KCSC), Team Research and Development (R&D), is a highly skilled department dedicated to advancing cyber security within Kongsberg Gruppen through cutting-edge innovation, research and development of advanced security solutions that protect our products and critical values. The team works closely with state-of-the-art technologies to, among other things, enhance the capability of our Security Operations Center (SOC). Through innovative development projects and research initiatives, the team ensures that Kongsberg Gruppen remains a leader in addressing future cybersecurity challenges.
KCSC's primary mission is to provide professional advice on information and cyber security, while detecting, preventing, investigating, and managing security incidents across the entire KONGSBERG organization. As an employee at KCSC, you will be part of a competent security environment with friendly colleagues who share a great passion for cyber security.
Personal qualities:
We are looking for a flexible and adaptable person who thrives on challenges and has a strong desire to succeed. You are goal-oriented and structured in your work, with an analytical approach that enables you to identify and solve problems effectively. Additionally, you have an outgoing and approachable personality that contributes to a positive work environment and good relationships with colleagues and partners. You are motivated by challenging tasks and not afraid to take initiative and responsibility. You have good interpersonal communication skills, the ability to work both independently and in interdisciplinary teams in a multinational environment. You also know that teamwork, communication, and knowledge sharing are just as important as your individual performance.
Job description:
As a security engineer with a background in software engineering, you will be a part of our R&D team where your work will focus on developing and advancing the operational capabilities of a cyber-physical test range. Additionally, you will engage in designing, developing and maintaining offensive and defensive security mechanisms, architecture, work processes and methodology for advanced security systems and products. You will have the opportunity to shape and innovate future security solutions, contribute to enhance our cyber capabilities, and be part of a team of highly skilled security experts.
Some responsibilities:
- Development and further operationalization of a cyber-physical test range. Adapting and implementing a test platform to perform advanced security tests, vulnerability analysis, simulations and testing of security scenarios
- Continuous development and improvement of the cyber range platform to meet new requirements and challenges
- Exploring new technologies and modern offensive/defensive security mechanisms, including AI/ML
- Configuration and maintenance of the cyber-physical test range
- Creating, updating, and maintaining user guides, manuals, and technical documentation
- Help to identify and solve possible significant obstacles for the operation of a cyber-physical test range in standalone and federated mode
- Participate in periodical risk and opportunities assessment for the cyber range project
Necessary qualifications,
Experience or knowledge in one or more of the following:
- Strong understanding of cyber security and cyber ranges, with expertise in at least one of the key technical disciplines essential for operating a cyber range
- Experience with Defence / NATO / EU technical development projects
- Experience with software engineering and modern application development (web)
- Solid experience with .NET development (C#), Python, and high-level programming languages
- Experience with authentication and authorization frameworks (OpenID Connect, OAuth, and similar frameworks)
- Network protocols and industrial communication protocols (DDS, MQTT, Modbus, CANBus, and similar protocols)
- Embedded Linux, microcontroller architecture and serial communication
- Experience with Secure Software Development Lifecycle (S-SDLC) and DevSecOps practices
- Experience with Docker, Kubernetes, and other containerization tools
- Relevant education at university or college level and fluency in English. Experience can compensate for lack of education
What we can offer:
We offer a wide range of benefits both on and off the job. Enjoy access to company cabins, discounted tickets for various cultural and sporting events, a dedicated leisure program for young employees, and access to several training facilities/agreements. We have flexible working hours, paid overtime, and good opportunities for professional development. KCSC has a strong focus on developing talents and facilitating professional growth, offering plenty of opportunities to obtain certifications and participate in courses and conferences.
Security and eligibility requirements:
As part of the recruitment process, candidates will undergo a background check, which will play a key role in the selection process. To be considered a candidate for this position, you must be a Norwegian citizen and eligible for security clearance and authorization at a minimum level of HEMMELIG / NATO HEMMELIG by the Norwegian National Security Authority.
Point of contact:
For any questions regarding this position, please contact Sirajuddin Asjad (Team Manager, Research & Development). See contact information.
Applications will be reviewed on an ongoing basis throughout the recruitment process.
Work location:
This position is based at our offices in Kongsberg or Moss. Some travel may be required.
Contact information:
Sirajuddin Asjad - Team Manager, Research & Development
sirajuddin.asjad@kongsberg.com
Phone: +47 992 07 543
Helene Brekke Sneis - Department Manager, KCSC
helene.brekke.sneis@kongsberg.com
Phone: +47 481 38 017