Job Description
The MBSS Expert is a technical subject matter expert. They are responsible for the end-to-end execution of Minimum Baseline Security Standards. This role focuses on the high-level technical design of security hardening controls. These controls are for Telecom & IT nodes. The expert oversees compliance assessments. They also support the governance of MBSS compliance. This covers various Lines of Business (LOBs). It also includes Managed Service Providers (MSPs) for a telecom network.
How You Will Contribute And What You Will Learn
- Design and develop MBSS hardening control templates, including command collections and validation methods, for diverse node architectures, vendors, and OS/software versions.
- Ensure hardening guidelines align with industry security standards and collaborate with OEMs for control validation and deployment sign-off.
- Oversee quarterly security compliance scanning for a large network of 120,000+ nodes, supporting year-over-year growth.
- Validate MBSS compliance and provide Go-Live approvals for approximately 1,000 new nodes entering the production environment monthly.
- Provide expert support to the MBSS tools team during First Node Implementation (FNI) and mass rollouts.
- Lead weekly operational governance meetings with clients, asset custodians, LOB SPOCs, and Managed Service Partners (MSPs).
- Track and follow up on the remediation of non-compliances according to defined escalation matrices and timelines.
- Deliver monthly compliance reports and weekly operational governance summaries to stakeholders.
Key Skills And Experience
Must-Have:
- B.E. / B.Tech degree in Computer Science, IT, or Electronics & Telecommunications, coupled with a CISA or CISSP certification.
- 12-15 years of professional experience in the field.
- Deep knowledge of CIS Benchmarks, NIST, and hardening for various OS/OEM products (especially Telecom & IT), with proven experience in creating baseline standards for diverse OEMs.
- Good hands-on experience with Telecom Nodes (2G-5G Products), including architecture know-how of Core, RAN, Tx & IP Fabric networks and elements.
- Proven experience managing security compliance across 50,000+ nodes using automated tools (e.g., BladeLogic) and coordinating large-scale remediation projects across MSP and OEM environments.
Nice-to-Have:
- C-SANS (GCWN / GCUX) for Windows/Unix expertise.
- CCNP Security or Nokia NRS II.
- CCSP or Azure Security Engineer.
About Us
Advancing connectivity to secure a brighter world.
Nokia is a global leader in connectivity for the AI era. With expertise across fixed, mobile and transport networks, powered by the innovation of Nokia Bell Labs, we're advancing connectivity to secure a brighter world.
Learn more about life at Nokia .
Our recruitment process
We act inclusively and respect the uniqueness of people. Our employment decisions are made regardless of race, color, national or ethnic origin, religion, gender, sexual orientation, gender identity or expression, age, marital status, disability, protected veteran status or other characteristics protected by law. We are committed to a culture of inclusion built upon our core value of respect.
If you're interested in this role but don't meet every listed requirement, we still encourage you to apply. Unique backgrounds, perspectives, and experiences enrich our teams, and you may be just the right candidate for this or another opportunity.
The length of the recruitment process may vary depending on the specific role's requirements. We strive to ensure a smooth and inclusive experience for all candidates. Discover more about the recruitment process at Nokia .
About The Team
Some of our benefits:
- Flexible and hybrid working schemes
- A minimum of 90 days of Maternity and Paternity Leave, with the option to return to work within a year following the birth or adoption of a child (based on eligibility)
- Life insurance to all employees to provide peace of mind and financial security
- Well-being programs to support your mental and physical health
- Opportunities to join and receive support from Nokia Employee Resource Groups (NERGs)
- Employee Growth Solutions to support your personalized career & skills development
- Diverse pool of Coaches & Mentors to whom you have easy access
- A learning environment which promotes personal growth and professional development - for your role and beyond
