Statkraft

CSIRT Security Operations Analyst

Statkraft  •  Oslo, NO (Onsite)  •  9 hours ago
Apply
AI can make mistakes so check important info. Chat history is never stored.

Job Description

Statkraft has been making clean energy possible for over a century. That is what we offer. 125 years of unrivalled expertise in supplying the world with what it needs most. We envision a world that runs entirely on renewable energy. Because in the fight against climate change, we do not see renewable energy as part of the solution – we believe it must be the solution. With us, you will shape a career that is truly forward-facing with many amazing opportunities and offerings to match.

But there is more work to be done – that is why we need you to join!

The Statkraft CSIRT team is part of the Cyber Security Department within Statkraft. Our mission is to avoid or minimize business impact from attempted or conducted cyber-attacks against Statkraft’s assets. We act as a central hub of contact, correlation, and coordination of security events based on current threat situation, business risk appetite, and regulatory requirements. We are now looking for a new team member who will perform investigations of potential cyber-attacks and intrusion attempts and conduct vulnerability assessments throughout the enterprise using commercial and open-source assessment tools.

As Security Operations Analyst you will play an important role in which your contribution help protect critical infrastructure in several countries. You will get the opportunity to influence both your own working day and Statkraft’s further development within cyber security. In our team you will work with cutting edge cyber security systems while sharpening and developing your own professional and personal abilities.

Your responsibilities include:

  • Monitoring, assessing, and responding to received warnings, alerts, and requests
  • Analysing security events in cooperation with colleagues, vendors, and relevant partners (KraftCERT/InfraCert, NCSC)
  • Performing vulnerability assessments, evaluate the risk they represent, and provide system owners with analysis and recommendations of key risks and remediation plans
  • Proactive and reactive threat hunting within networks and endpoints
  • Perform in-depth technical investigations during security incidents, including data collection, intrusion analysis, and forensics
  • Following up on vulnerabilities and security incidents, and ensure sufficient measures are implemented
  • Participating in security evaluations and risk assessments of ongoing and new solutions and services in cooperation with our Security Architects
  • Contributing to implement relevant policies, processes, and tools to ensure compliance and to increase quality and efficiency

Qualifications

To be successful in your role, we believe you have:

  • A burning interest in cyber security
  • Solid work experience from a SOC or Incident Response Team
  • Experience with performing vulnerability assessments
  • Experience with analysis and tools for collecting and analysing network and host logs (SIEM, IDS, EDR, etc.)
  • In-depth understanding of IP protocols, network and operating systems
  • Fluency in Norwegian and English, both spoken and written

These skills and experiences would be beneficial:

  • Familiarity with cyber security frameworks (such as Cyber Kill Chain, MITRE ATT&CK), penetration testing, and IT system audits
  • Scripting skills in Python, PowerShell, KQL, Perl, Go, Bash or similar
  • FrontierAI and/or Splunk experience would be an advantage
  • Ability to demonstrate analytical expertise, close attention to detail, excellent critical thinking, logic, and solution oriented

Additional Information

What we offer:

  • Unlimited learning opportunities at various levels of the organization
  • The chance to grow your career alongside a truly global network of experts, leaders, specialists, and graduates from different countries and backgrounds
  • The opportunity to work somewhere with pride, and be able to honestly say “My work is contributing to saving the planet”
  • A work culture that puts emphasis on the individual, offering flexible working solutions, and work-life balance principles
  • Statkraft offers competitive terms of employment and benefits schemes, and we’re a trusted employer that puts the safety of our people first. We believe that a safe and healthy working environment is a matter of choice, not chance

Statkraft manages critical infrastructure and services in several countries. The applicant must be eligible for Norwegian security clearance and authorization.

Statkraft's vision is to renew the way the world is powered. To navigate the complex journey ahead, we need every voice at the table. We therefore work actively to be a diverse and inclusive workplace and welcome all applicants regardless of background, gender, age, sexual orientation, religious belief, ethnicity, nationality or disability.

Application deadline: 9th of August

Location: The position will require physical presence at the main office in Lilleaker, Oslo, Norway.

Statkraft

About Statkraft

Statkraft is a leading company in hydropower internationally and Europe’s largest generator of renewable energy. The Group produces hydropower, wind power, solar power, gas-fired power and supplies district heating. Statkraft is a global company in energy market operations.

Statkraft has 7000 employees in more than 20 countries.

Industry
Energy & Utilities
Company Size
1,001-5,000 employees
Headquarters
Oslo, NO
Year Founded
1895
Social Media