Senior Cybersecurity Specialist, Risk Management & Control Implementation

Are you our next creator of change?

Do you want to be part of creating solutions for mitigating climate change? At Neste, you will be working for the world’s leading producer of sustainable aviation fuel and renewable diesel. Together we will accelerate transformation for a more sustainable future.

We're looking for you, a highly skilled and proactive

Senior Cybersecurity Specialist, Risk Management & Control Implementation

to our Cybersecurity team in Espoo to play a critical role in strengthening our security posture.

Are you a seasoned cybersecurity professional with a passion for proactive risk management and implementing robust security controls? Do you thrive on the challenge of securing a dynamic enterprise environment? If so, we want you to join our team!

In this critical role, you'll be instrumental in identifying, assessing, and mitigating risks, while ensuring the effective design and deployment of security controls across our global operations. If you thrive in a fast-paced environment, possess an analytical mindset, and are passionate about defending against sophisticated cyberattacks, we want to hear from you. You will work closely with teams across IT, our suppliers, the business teams and all your colleagues in our cybersecurity team.

In our team you will find an enthusiastic, friendly and very skilful group of professionals on a mission to make our company safer and more fun. Our responsibilities cover the whole Neste. This ensures exposure to all aspects of our business, technologies, and processes we use to solve threats to our planet. all the way from offices, labs, refineries and terminals. Together with you and your expertise, we can make an impact today and keep our promises for tomorrow.

Reasons to join

Real impact right now. We create solutions for mitigating climate change and accelerating a shift to a circular economy. We live by our values every day; we care, we have courage, we cooperate.

Safety and caring. We value safety always and everywhere. We want our work to feel good and do good. At Neste, we nurture a culture where everyone is welcome and feels safe, respected and encouraged to be their unique true selves.

Exciting growth. Transformation brings new possibilities, fostering both courage and curiosity. As a global company, collaboration is the key, and we believe in flexible, smart ways of working. We support personal development with versatile learning and career opportunities.

In addition, our benefits for employees in Finland include, for example, a personnel fund as part of the overall remuneration, good occupational health care, and an extensive membership in a sickness or health insurance fund. We also support leisure time activities, e.g. by offering benefits for sports and culture.

More about the job

Your role in our team

• Lead Risk Assessments: Conduct comprehensive security risk assessments for systems, applications, and business processes to identify potential security gaps and their potential impact.

• Design & Implement Controls: Define, document, and oversee the implementation of security controls and countermeasures based on risk appetite, regulatory requirements and industry best practices (e.g., ISO 27002, NIST, NIS2, GDPR)

• Policy & Standard Development: Develop, update, and maintain security policies, standards, and guidelines related to risk management and control enforcement.

• Consultation & Collaboration: Serve as a subject matter expert, advising technology and business teams on risk mitigation strategies and control effectiveness.

• Control Testing & Validation: Establish and manage a process for testing and validating the ongoing effectiveness of security controls (e.g., access controls, data encryption, network segmentation)
  
  

Keys to success in this role

• Experience: Minimum of 5+ years of progressive experience in cybersecurity, with a strong focus on security risk management and control implementation.

• Technical Expertise: Deep knowledge of security frameworks (e.g., ISO 27002, NIST CSF, IEC 62443) and proven experience translating risk into actionable security requirements.

• Control Environment: Hands-on experience designing and assessing controls across various domains

• Certification: Relevant professional certifications are desirable (e.g., CISSP, CISM, CRISC).

• Analytical Skills: Excellent analytical, problem-solving, and decision-making capabilities, with the ability to articulate complex security concepts to technical and non-technical audiences.

• Communication: Good written and verbal communication skills, including experience preparing detailed risk reports and security documentation.

Let’s get you started

We look forward to receiving your CV and application (with a salary request) by November 23, 2025.

If you have any questions regarding the process or the position, please get in touch with Antero Päivänsalo, Chief Information Security Officer, +358 40 172 6380, on November 13 at 12 - 13:30 (EET) or November 18 at 12 - 13:30 (EET).

Due to security and confidentiality, please submit your application through our recruitment system. Applications sent via email will not be considered. We will do our best to contact you within 2 weeks after the application time has ended. The recruitment process will include interviews and a possible aptitude assessment. The person selected for the position must pass a health examination including a drug test. A possible security clearance is obtained with your consent.

Neste in brief

Neste (NESTE, Nasdaq Helsinki) creates solutions for mitigating climate change and accelerating a shift to a circular economy. The company is the world’s leading producer of sustainable aviation fuel (SAF) and renewable diesel, enabling its customers to reduce their greenhouse gas emissions. Neste refines waste, residues and other renewable raw materials to high-quality renewable fuels at its refineries located on three continents. The company’s annual renewable fuels production capacity will be increased to 6.8 million tons in 2027.

Neste has high standards for sustainability and the company has consistently been recognized by several leading sustainability indices. In 2024, Neste's revenue stood at EUR 20.6 billion. Read more: neste.com

#li-hybrid