At Ericsson, you can be a game changer! Because working here isn’t just a deal. It’s a big deal. This means that you get to leverage our 140+ years of experience and the expertise of more than 95,000 diverse colleagues worldwide. As part of our team, you will help solve some of society´s most complicated challenges, enabling you to be ‘the person that did that.’ We’ve never had a greater opportunity to drive change; setting the bar for technology to be inclusive and accessible; empowering an intelligent, sustainable, and connected world.

Are you in?

Red Team - Penetration Tester

Job Description

Date: Nov 8, 2019

Why is Ericsson a good place to work
Ericsson enables communications service providers to capture the full value of connectivity. The company’s portfolio spans Networks, Digital Services, Managed Services, and Emerging Business and is designed to help our customers go digital, increase efficiency, find new revenue streams, and create new user experiences. Ericsson’s investments in innovation have delivered the benefits of telephony and mobile broadband to billions of people around the world ensuring our solutions – and our customers – are at the forefront of innovation.   We support networks that connect more than 2.5 billion subscribers. With close to 100,000 employees and customers in 180 countries, we combine global scale with technology and service leadership.  40 percent of the world’s mobile traffic is carried over an Ericsson network.  And, our Technology for Good and Connect to Learn programs include creating technology that makes it easier to save lives, feed societies, bring technology to emerging markets and connectivity to remote areas, and grow businesses and prosperity.

 

At Ericsson, we give our employees the freedom to think big and navigate their career, on a global scale.  We create technology that helps others, from helping people enjoy their favorite content to helping people recover from natural disasters by enabling better communications between rescue workers. Your ideas and innovations can turn into achievements that impact society and change the world, creating new connections, new possibilities, and new capabilities.  We find that Ericsson is at its best when we bring together the diverse skills of our people. Working across business areas, across cultures, across geographical borders, across technical disciplines. More often than not, across ground-breaking solutions. Next generation technology can be staggeringly complex. But the simpler it is to use; the more people benefit from it. Join us and help build technology that makes it simple to connect with information, business, societies, and each other.


Red Team - Penetration Tester

 

Job Summary:
The BDGS Security Centre is now recruiting for a Penetration Tester to be part of our Red Team and to support our activities. Preferably the role would be based in Stockholm, but this is not a requirement. This role will be responsible for undertaking various activities to assess the security of Ericsson's Digital Services portfolio, including White/Black box testing, penetration tests, perform security audits and analyses security reports. A key responsibility of this role will be the ability to use the output of various activities as an input towards the development and service delivery units. In addition, the successful candidate will be responsible for suggesting improvements to our products, product development processes and best practices.

 

You will need good skills and the ability to convey key messages different levels of the organization. We also think you are a strong result-oriented person with motivation and drive. You should be comfortable working both on individual tasks, but also as part of a team, depending on the different needs of the Security Centre.

 

Responsibilities:
• Security testing techniques, including penetration testing, code reviews, fuzzing and static/dynamic analysis
• Assessing the security posture, from both a technical and human perspective, of BDGS's portfolio
• Proposing improvements to Ericsson's Products and Processes
• Collaborating with units across Ericsson, including Product Security Incident Response Team, IT Security and Group Security on different activities
• Management of third-party testing companies as required
• Verification and validation of reports from PDUs, Customers and Regulators

 

Minimum Qualifications & Experience Requirements:
• Around 3 years of experience working with security audits and penetration testing.
• Deep technical understanding of vulnerabilities and technology in security risks and vulnerabilities.
• Programming and scripting knowledge and experience.
• Ability to detail and explain vulnerabilities and exploits that are discovered during test, through written reports or presentations to varying audiences.
• Experience with Windows and *nix platforms, along with virtualization and containers.
• Knowledge of different frameworks, including OWASP, SANS, MITRE etc.
• Highly skilled in industry security best practices, processes and requirements.
• Deep technical competence in relevant tools and trades. Ability to read security reports and analyze results.

 

Preferred Qualifications & Experience Requirements:
• Certifications in OSCE/OSCP/CEH are a benefit, equivalent experience is also considered.
• Participation in CTF’s would be an advantage.

 

Application
The selection and interview process is ongoing, so send your application in English as soon as it is ready. If you have specific questions you are welcome to email recruiter at karolina.grad@ericsson.com

 

Location: Kista, Sweden

 

Last day to apply is the 21st of November, 2019.

 

We welcome the opportunity to meet you!

 

Ericsson provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, sexual orientation, marital status, pregnancy, parental status, national origin, ethnic background, age, disability, political opinion, social status, veteran status, union membership or genetics.

Ericsson complies with applicable country, state and all local laws governing nondiscrimination in employment in every location across the world in which the company has facilities. In addition, Ericsson supports the UN Guiding Principles for Business and Human Rights and the United Nations Global Compact.

This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, training and development.

Ericsson expressly prohibits any form of workplace harassment based on race, color, religion, sex, sexual orientation, marital status, pregnancy, parental status, national origin, ethnic background, age, disability, political opinion, social status, veteran status, union membership or genetic information.

 

Primary country and city: Sweden (SE) || || Stockholm || R&D

Req ID: 304178