Job ID: 4208

Welcome to Group Technology, where we pride ourselves on engineering solutions and direct Nordeas transformation by providing a holistic technological view and structured understanding of the bank, and its surrounding environment to enable the Customer Vision and the Business Strategy.

Nordea is a place where traditions meet tomorrow. We're not just a bank, we're a tech employer on a mission to evolve finance securely and responsibly. Together, we impact millions of peoples daily lives by ensuring they can access our solutions anytime, anywhere, while safeguarding their personal data and wealth. Join us in making an impact on the banking industry.

About our team

Meet the Cloud Security team. As a part of Cyber Security we act as the primary advisory body for Nordea teams implementing cloud solutions, ensuring security is built-in from the initial planning phases. 

What you'll be doing

We are now looking for a Cloud Security Expert specialist to join our team and help us stay up to date with everchanging world of risks, security and compliance requirements in cloud and AI. Person who understands security best practices for applications, servers and networks and can translate that into Cloud security requirements and standards.

Main responsibilities in this role: 

• Provide expert guidance on selecting security controls across SaaS, PaaS, and IaaS models, ensuring alignment with industry frameworks and internal compliance.
• Participate in Third Party Risk Assessments (TPRM) and Quality Risk Assessments (QRA) to provide senior leadership with a comprehensive risk picture.
• Act as a central coordinator for AI Security, synthesizing use cases and assessing the security implications of emerging AI implementations. 
• Function as a strategic liaison between Cyber Security org. and project teams, translating complex technical requirements into business-aligned security strategies.
• Review architectural designs and recommend enhancements to ensure "security by design" rather than "bolted-on" solutions.
• Monitor and approve security changes in Nordea main cloud providers, to ensure Nordea security posture isnt weakened and risks are properly captured and approved.

Who you are

This is the right role for you if you have: 

• 5+ years experience in IT security, compliance, and risk management with a focus on cloud-native environments. 
• Strong understanding of Cloud Provider security best practices (AWS, Azure, or GCP) and how to apply them to diverse business projects.
• Proven experience in risk leadership, specifically coordinating with legal, procurement, and technical teams during risk evaluation evaluations.  
• Familiarity with AI security threats, governance frameworks, and the security implications of Large Language Models (LLMs) or AI integrations.
• Ability to translate technical risks into "business-friendly" language for non-technical stakeholders.

Nice to have certifications: Preferably AWS/Azure/GCP Security, CCSP 

It would be ideal if you also: 

• Have security or architecture certification from one (or more)of three main cloud providers AWS/Azure/GCP. For this role GCP is preferable.
• Have an experience in deployment or governance of cloud CNAPP tool e.g. Wiz 

What we offer

Collaboration. Ownership. Passion. Courage. These are the values that guide us in how we work and how we make decisions and that we imagine you share with us.

People are driven by many different factors. For some, its to take their career to the next level. For others, its to break new ground within their area of expertise in other words, with us, you will always move forward.

A culture that fosters performance and growth in one of the largest Nordic banks, offering various opportunities to evolve, develop and learn from brilliant colleagues with diverse backgrounds in a vibrant working environment.

Hybrid working model we believe in the value of bringing people together and at the same time we embrace the freedom of flexibility.

Diversity and inclusion are a natural part of our daily work. We know that an inclusive workplace is a sustainable one. We genuinely believe that our diverse backgrounds, experiences, characteristics and traits make us stronger together. Every day we strive to find new ways to improve diversity and inclusion within our community e.g. we have signed the European Diversity Charters in the countries where we operate to show our commitment and engage with others to continue learning and improving.

If this sounds like you, get in touch!

Next steps

Submit your application no later than 31/05/2026. 

The recruitment process consists of the following steps:

• Preliminary CV selection
• Phone conversation with the recruiter
• Online interview with the hiring leader
• Background check

We enable dreams and aspirations for a greater good.

We build relationships. We add a personal touch to everything we do when advising our customers, collaborating with colleagues, and meeting our potential candidates.

We learn and develop. We take pride in being experts and thinking ahead. We use our expertise to meet our customers needs, from the simplest to the most complex. We bring a growth mindset to our work that enables us to focus on a broader perspective in our daily challenges.

We lead change. We are responsible and aware of the impact of our decisions, both for our customers and for our local and global communities. Mindful of our responsibility towards current and future generations, we have made sustainability an integrated part of our business strategy.

We are Nordea. We have a 200-year history of supporting and growing the Nordic economies and our values are deeply rooted in these open, progressive and collaborative societies. As one of the biggest employers in the Nordics, Poland and Estonia, you have excellent opportunities to evolve, develop and move forward with us.

Studies show that members of underrepresented communities dont apply for jobs unless they tick all the qualification boxes. If this is part of why you hesitate to apply, we would like you to reconsider and give it a chance. Maybe your profile fits our needs much better than you think.

For candidates in Poland: Please include permit for processing personal data in CV as following:
 
In accordance with art. 6 (1) a and b. Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) hereinafter GDPR. I agree to have: my personal data, education and employment history proceeded for the purposes of current and future recruitment processes in Nordea Bank Abp.
 
The administrator of your personal data is: Nordea Bank Abp operating in Poland through its Branch, address: Aleja Edwarda Rydza miglego 20, 93-281 od. Your personal data will be processed for the recruitment processes in Nordea Bank Abp. You have a right to access your personal data, right to rectify and right to delete. Disclosing the personal data in the scope specified by the provisions of Polish Labour Code from 26 June 1974 and executive acts are mandatory. Providing personal data is necessary to conduct the recruitment processes. The request for the deletion of your personal data means resignation from further participation in recruitment processes and causes the immediate removal of your application. Detailed information concerning processing of your personal data can be found at: nordea.com/en/doc/nordea-privacy-policy-for-applicants.pdf.
 
We reserve the right to reply only to selected applications.