Oh oh! Awesome! {$ msg.text $} ({$ msg.count $})

Information Security Specialist (ISMS)

  • Application Deadline: Sept. 30, 2021
  • Helsinki +6 more
  • Application Deadline: Sept. 30, 2021
  • Helsinki +6 more

F-Secure delivers research-led cyber security to defend organizations, society and people from real-world attacks and build resilience into their approach. Our people are a mix of technical and creative experts – diverse, talented, and passionate people – working tirelessly to help us advance the industry with new ways of thinking. They lead their own development, in and out of the office. They call the shots when it comes to building a place to call home in our organization.

As our Information Security Specialist (ISMS), you will work together with F-Secure's security and business leadership with a mission to ensure that the company continues to stay secure, certified and able to evidence its good security posture in a manner that satisfies our internal and external stakeholders' expectations. We already have a dozen sites across four continents certified with ISO 27001, with everyone involved consistently finding the experience positive and the results helpful to their cause.

You will join our multidisciplinary internal team of seasoned security professionals and get the privilege to serve the whole global F-Secure family of companies.

Key Responsibilities

Our ISMS operates on lean principles, and integrates deeply with our security incident management, risk registry, security improvement tracking, and IT change management workflows. This enables us to manage cyber security risks effectively and to produce evidence of our security posture. We regularly subject our operations and business assets to audits which you will participate as auditor, host or a subject matter specialist.

The constant grind of security anomaly investigations, penetration tests and other kinds of technical security assessments provide us with additional visibility to what works and what not and you will participate in evaluating the overall effectiveness of our defences with the wider team. We constantly engage in dialogue with our stakeholders over how to improve security across the board and expect you to be familiar with coaching methodology to achieve satisfactory goals.

What are we looking for?

You have first-hand experience in security management systems, risk management and security assurance. Familiarity with ISO 27001 audit practices, cyber security risk assessments and SOC2 assurance testing will be appreciated. NIST Cyber Security Framework is not a mere theory to you.

We are a cyber security company, so we expect solid understanding of information security basics and the "laws of physics" behind cyber security technologies.

Bonus points

  • ISO 27001 lead auditor credentials are a plus, but not mandatory (trust us, you will earn the title in no time).
  • Experience in ISAE 3000 / SOC 2 assurance reporting.
  • NIST Cyber Security Framework
  • Pre-existing familiarity with Jira power moves is a plus (although we recognize that is an acquired taste).

What will you get from us

If you have ever wondered what good looks like from security management systems point of view, look no further. If you want each working day to involve exchange of ideas, professional sparring and the pleasure of finding things out, this is your chance to join the winning team!

Work with great people

Karolina Malagocka
Senior Marketing Manager
"At F-Secure we see the value of each and every person"
Robert Grześkowiak
Lead Software Engineer
"At F-Secure you won't feel bored. There are opportunities to learn new things every day."
Fairuz Zainor
Malware Analyst
"I joined F-Secure straight after graduating and now, 10 years later, I am still happy to be here."
William Jardine
Senior Security Consultant
"The freedom is a big thing for me. The trust you are doing something worthwhile."

Great Place to Work

  • Over 1,700 amazing colleagues in nearly 30 offices

  • Possibility to protect the world

  • Work with best of class experts who care

  • Relaxed, open and fun working environment

  • 68+ of nationalities

  • Global with the spirit of a small company

About the company

You can’t design culture!

The F-Secure team is diverse, fluid, fun-loving, and full of energy. It’s our job to preserve that, so we’ve made it our business to help individuals traverse from passion to passion, from specialism to specialism, from the flavor of today to tomorrow’s. We move with their needs, and help them build Pathways, always focusing on the things that make them happy in and beyond of the office.

See yourself here? Bring your best self and apply now.


1988F-Secure established under the name Data Fellows

1992First public hysteria about a computer virus

2002First Antivirus for mobile phones

2004F‑Secure Labs launches first antivirus industry blog

2009F‑Secure’s next step into the cloud

2015F-Secure aims to become the leading European cyber security company

2018MWR InfoSecurity joins F-Secure

F-Secure

Helsinki +6 more
Visit website