Are you passionate about cyber security? Do you enjoy supporting organizations to develop their cyber resilience? Do you know how to conduct the risk assessments and how to collaborate on cyber security with the business and IT organizations?

If your answer is YES,

then you want to APPLY!

Our clients’ demand for cyber security and risk management services are rapidly growing. We need to grow our team to meet this demand. We believe that we are a good match for you who has an entrepreneurial mindset and the drive to shape the future. You will be a part of our Finnish consultant team, but at the same time a respected member of a bigger global consulting team. You will be a key stakeholder in improving the information security posture and cyber resilience of our clients. F-Secure Consulting has a clear vision and is on a strong growth path - for the years to come. We want you to be a part of this journey.

The work as a Security and Risk Management Consultant is characterized by trust and we always strive for long term client-relationships and to be the trusted information security advisor for our clients. Our vision is to provide Finland’s most qualified cyber advisory to our clients, adapted to suit their specific preconditions, so that the client improves their effective security posture, and their risks are mitigated. We help our clients by prioritizing where to focus their budgets to optimize their return on cyber security investments in their quest for cyber resilience. You will also be part of a great team working closely with extremely talented consultants, both security and risk management experts as well as technical security experts. We have a great atmosphere with a lot of fun, collaboration and great learning and development opportunities.

Key Responsibilities

This, on daily basis, translates to that we assist our clients in their information security needs on strategic, tactical and operational level. Typical client engagements include ISMS implementations, engagements in various security projects, security audits, taking on the role as CISO, and advising on information security strategy. You will most likely be involved in activities such as:

• Performing risk assessments

• Defining risk mitigation strategies

• Establishing information security governance frameworks

• Engaging with various stakeholders, including business, IT, product management and software development organisations

• Advising on security objectives and risk appetite

• Advising on security strategy and budget.

What are we looking for?

We are looking for individuals that we believe exhibit ambition, aspiration to continue to learn, passion to assist our clients as a trusted advisor, versatility in skillset and personality traits that will be appreciated both by clients and colleagues. We appreciate and expect professional pride and integrity. Being able to develop and maintain good and long-term working relations with customers and to create a network within F-Secure is pivotal, as is thriving in both independent and team-based settings.

• 2-5 years of professional experience within information security with a suitable educational background.

• Your current role is probably an information security consultant, CISO, security manager, security architect, information security auditor, or similar.

• You have a track record of successful security and/or risk management experience.

Experience within the following fields is desired:

• ISO/IEC 27001

• Security improvement programs

• Information security frameworks, such as CIS, NIST, PCI DSS and others, including national frameworks

• Legal requirements for information security, such as NIS, GDPR, and national legislation

• Risk assessment and threat modelling

• Proven skills to work with roles within software development, such as technical architects, software developers and product management, on their terms

• Cyber maturity assessment and IT audit

• Governance, risk and compliance

• Fluent Finnish and English, both spoken and written

Bonus points

• Recognized certifications within risk, security and privacy management, IT management and project management are a plus, but not a requirement

• Experience of agile process models and different flavours of software development lifecycles are a plus

• Technical architecture skills (including cloud architecture) are a plus

What will you get from us

F-Secure delivers research-led cyber security to defend organizations, society and people from real-world attacks and build resilience into their approach. Our people are a mix of technical and creative experts – diverse, talented, and passionate people – working tirelessly to help us advance the industry with new ways of thinking. They lead their own development, in and out of the office. They call the shots when it comes to building a place to call home in our organization.

F-Secure offers competitive terms and a modern, flexible workplace and a unique professional environment. In a company culture rooted in quality and innovation, you will contribute to improving the security of persons, corporations, public institutions, and society in general around the globe. You will be given a high degree of freedom in seeking out opportunities, assisting in forming our team and driving further development of services for national and global delivery.

See yourself here? Bring your best self and apply now!

A security background check will be conducted for the selected candidate, in accordance with the Finnish Security Clearance act 726/2014.