Master Thesis: Security Analysis / Audit
We are now searching for two master students to conduct a security analysis of Revenue Manager setup used in demo delivery, and to propose suggestions as part of the analysis.
In-depth security analysis on BSS system with focus on traffic direction and how to improve a security analysis.
The result of the analysis will be presented internally within Ericsson, where the improvements of the analysis should be listed.
The result might be used as input to ongoing development of the product.
Further clarification can be give at a later stage.
Understanding of DevSecOps in maintaining security in CI/CD processes
security risk assessment and mitigation
Knowledge of identity and access management
Knowledge of Role Based Access Control
Knowledge with browser security controls, application security standards such as OWASP ASVS/Top 10, CWE 25 and vulnerability handling and scoring with CVSS
Knowledge CISSP, CISM, CRISP, CISA and/or other industry recognized certifications as well as security standards such as SSAE-18, SOX, HIPAA, ISO27000, NIST
This thesis is an on-site project which means distance work is not possible.
Are you in?
Then send in your application (CV, current grades and cover letter written in English collated into one document) as soon as possible.
The application deadline is the 20th of January. The process will be ongoing and we will let you know as soon as we can if you move forward. Any questions? Please email Christian.Sperling@Ericsson.com
Ericsson provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, sexual orientation, marital status, pregnancy, parental status, national origin, ethnic background, age, disability, political opinion, social status, veteran status, union membership or genetics.
Ericsson complies with applicable country, state and all local laws governing nondiscrimination in employment in every location across the world in which the company has facilities. In addition, Ericsson supports the UN Guiding Principles for Business and Human Rights and the United Nations Global Compact.
This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, training and development.
Ericsson expressly prohibits any form of workplace harassment based on race, color, religion, sex, sexual orientation, marital status, pregnancy, parental status, national origin, ethnic background, age, disability, political opinion, social status, veteran status, union membership or genetic information.
Primary country and city: Sweden (SE) || || Karlskrona || Stud&YP
Req ID: 262259