Senior Cyber Security Offensive Practice Lead

Nordea Bank AB
Helsingfors, Nyland (FI)
den 9 december 2021
den 31 januari 2022

We are now looking for an  Senior Cyber Security Offensive Practice Lead, Copenhagen , a driven individual that is passionate about discovering gaps in security controls through objective based offensive exercises. Once a gap is discovered we apply pressure to continue movement. This is a unique opportunity to go wide and deep in security concepts. Refine testing capabilities and deliver security posture evaluation assessments. A successful candidate should possess a willingness to continue to improve their understanding in both information security and computer science

About this opportunity

Welcome to the Cyber Intelligence Analytics team. The Cyber Intelligence Analytics team at Nordea have investigation, testing and verification capabilities and real-world perspective on threat actors. We add value by ​improving and verifying the effectiveness of Nordea´s security posture. As the Offensive Practice Lead you will play a key role in ensuring that incident responders have the most relevant real-world perspective by emulating advanced persistent treats (ATPs).  

What you’ll be doing:


  • Plan and execute objective based offensive exercises. 

  • Make the entire kill-chain understandable for the blue teams.  

  • Create models for SOC to detect similar family of techniques. 

  • Demonstrate to decision makers the real-world feasibility. 

  • Identify gaps and provide advice around defensive capabilities.   

  • Plan and execute intelligence led and scenario-based security assessments.  

  • Develop and maintain security testing plans.  

  • Conduct strategic analysis of cyber security threats. 

  • Interface with external security research and establish collaborations. 

  • Provide strategic input and advice to the head of Cyber Security Infrastructure.  


You will join a vibrant and ​dynamic team with great opportunities for continuous professional growth. We support and push each other to be better. 

The role is based in [[mfield3]].

Who you are

Collaboration. Ownership. Passion. Courage. These are the values that guide us in being at our best – and that we imagine you share with us.  

To succeed in this role, we believe that you:


  • Have a record of accomplishment from a previous red team lead role or penetration test role.  

  • Have a passion for diving deep into security around reconnaissance, stealth, persistence, lateral movement, and data exfiltration.  

  • Have experience performing threat model leveraging open-source intelligence techniques. 

  • Have experience from emulation of real-world threat adversarial trends, tactics, and procedures.  

  • Can develop and maintain operational documentation and deliverable workflows.  

  • Understand and execute on technical cyber security.  

  • Can communicate hard-to-grasp concepts in a way that makes sense for different audiences. 

  • Have knowledge of persistence tool kits and red team infrastructure.  

  • Understand Cyber Security posture, technologies, kill chains, threat detections, adversary tactics and techniques (MITRE), Common Vulnerability Scoring System (CVSS) and more. 

  • Can communicate using the English language at an advanced level. 


If this sounds like you, get in touch!



Next steps

Submit your application no later than 31/12/2021. For more information, you’re welcome to contact Johan Oscar Arlehamn.

At Nordea, we know that an inclusive workplace is a sustainable workplace. We deeply believe that our diverse backgrounds, experiences, characteristics and traits make us better at serving customers and communities. So please come as you are.


Please be aware that any applications or CVs coming through email or direct messages will not be accepted or considered.

Liknande jobb

Liknande jobb