Location
Ottawa, ON | Canada
Job description
Location: Ottawa (Canada) or Kista (Sweden)
About this opportunity Customer Experience at Cloud RAN, part of Business Unit Networks, works closely with our customers to drive the uptake and delivery of cloud native RAN Solutions
Our mission at EU CR CX Solutions and Release is to: Increase the reach of Cloud RAN by ensuring flexible business solutions that embrace the Cloud ecosystem and are profitable for Ericsson
We are a senior team who put the e2e customer experience in focus for EU Cloud RAN. We develop solutions that are service-ready, including key metrics for dimensioning, guidelines for integrating selected cloud infra and HW, and blueprints for supported configurations (DRAN, CRAN, enterprise). We provide customers the documentation to deploy and manage our solutions, and we drive and validate quality targets to ensure the high-quality release of Cloud RAN solutions. We forge the path towards continuous release and deployment, ensuring Cloud RAN embraces Cloud Native standard methodologies
We are now looking for a Security Tester having background in VA testing to join the Cloud RAN solution team. The main responsibility is to focus on our Cloud RAN business solution ecosystem and products and cover the common activities for security testing and analysis
You will report to Manager, Solution Validation for the Cloud RAN System Verified and Validated Solutions
What you will do As Security Tester you will be responsible for the following functions:
- Develop and maintain automated test frameworks based on Ericsson internal tools like AAT/MJE/JCAT/TGF/TestNG/Robot, ensuring scalability, reliability, and maintainability
- Integrate automated tests into the CI/CD pipeline using Jenkins and Spinnaker, enabling faster feedback and efficient release cycles
- Setup Penetration testing framework and complete tests
- Perform fuzzing testing and prepare fuzzing test suites with suitable framework for regression
- Perform ad-hoc penetration testing of our System Verified and Validated solution. Verify security risks and discover new vulnerabilities not identified by generic security tools
- Solve and debug test failures, working closely with development teams to identify root causes and provide timely resolutions
- Work with an international cross-site team who are experts in the area of CNF, 5G and RAN
- Support on the scanning of internal components and analysis of new security issues not detected previously by our development organization
- Analyze all reports generated by the tools
- Determining if it is false positive or not
- Stablishing the criticality of each vulnerability applied in the product context
- Support on Critical and High vulnerabilities found in internal components
- Help preparing vulnerability analysis reports
You will bring - Bachelor's or master’s degree preferably in information and/ or Cybersecurity, Computer Science, or a related field
- Proven testing experience, vulnerability (VA) testing knowledge is a must
- Strong background in UNIX/Linux, and competent in script programming, such as shell or Python, etc
- Experience in developing and automating (Penetration) test cases
- Experience in white and grey box offensive penetration testing with different offensive security tools and techniques
- Knowledge of threat modelling methodologies and related frameworks
- Knowledge about cloud native products, its infrastructure and different delivery artifacts (Docker, Kubernetes, Dockerfile, Helm charts, etc.)
- Good knowledge in ICT security area preferably with Security certification such as CISSP, CCSP and/or CISM is desirable but not mandatory
- Experience in Cloud and/or in Cloud native technologies (k8s for example)
- Technical understanding and experience in working with RAN and/or Core mobile technologies id desirable
- Working experience of Ericsson Security Manager is desirable
- Good English language skills in both writing and conversation
- Open-minded, have a positive attitude and a constructive way of solving problems. Innovating, adapting and responding to change
This role reports to the Manager of Solution Validation
Why join Ericsson?At Ericsson, you´ll have an outstanding opportunity. The chance to use your skills and creativity to push the boundaries of what´s possible. To build never seen before solutions to some of the world’s toughest problems. You´ll be challenged, but you won’t be alone. You´ll be joining a team of diverse innovators, all driven to go beyond the status quo to craft what comes next
What happens once you apply?To prepare yourself for next steps, please explore here:
Encouraging a diverse and inclusive organization is core to our values at Ericsson, that's why we nurture it in everything we do. We truly believe that by collaborating with people with different experiences we drive innovation, which is essential for our future growth. We encourage people from all backgrounds to apply and realize their full potential as part of our Ericsson team. Ericsson is proud to be an Equal Opportunity and Affirmative Action employer, learn more. If you need assistance or to request an accommodation due to a disability, please contact Ericsson at [email protected]
DISCLAIMER: The above statements are intended to describe the general nature and level of work being performed by employees in this position. They are not an exhaustive list of all responsibilities, duties and skills required for this position, and you may be required to perform additional job tasks as assigned.
Primary country and city: Canada (CA) || Canada : Ontario : Ottawa || Sweden : Stockholm : Stockholm
Req ID: 743122
Job tags
Salary