Applied R&D Engineer

The Applied R&D Engineer conducts target-oriented research to directly apply findings to the specification, design, further development, and incremental improvement of products, services, systems, tools, processes, etc. Integrates, verifies, tests, and modifies SW / HW / system components and capitalises on innovative solutions to meet particular requirements and specifications.
As a part of CNS CSF team, you will be working on delivering open-source components on to various PaaS environments like NCS, AWS, Azure, GCP etc, contributing to the open-source community and ensuring security of the open-source components on PaaS.

• Contribute to delivering and securing open-source components like KeyCloak, OpenBao, and Ingress Controller across PaaS environments (NCS, AWS, Azure, GCP), while actively engaging with the open-source community.
• Drive end-to-end security response processes by analyzing and prioritizing CVEs, collaborating with development teams, and delivering effective remediations.
• Perform vulnerability assessments using tools such as Burp, Anchore, Malware scans, and Codenomicon, mapping severity levels to ensure secure open-source software usage.
• Design, build, test, and ship software at scale using Java, Python, and J2EE technologies, while participating in all stages of development including coding, reviews, unit testing, and bug fixing.
• Lead by example in fostering a culture of craftsmanship, innovation, and continuous improvement, while shaping and optimizing development practices
• Work in agile, collaborative environments with cross-functional teams, contributing to both technical excellence and secure, scalable software delivery

Must Have:

• Graduate/Post graduate in Engineering or equivalent degree with 4 – 7 years of strong hands-on experience with along with expertise in Java, Python, and J2EE.
• Proven ability to build, test, and ship software at scale, with experience in the full development lifecycle including design, coding, reviews, unit testing, and bug fixing.
• Experience in handling security vulnerabilities (CVE), performing scans (Burp, Anchore, Malware, Codenomicon), analyzing results, and driving remediation in collaboration with development teams.

Good to Have:

• Familiarity with security protocols (TLS, SSH), encryption methodologies, and secure-by-design practices including threat analysis and system hardening and open-source technologies such as KeyCloak and OpenBao,
• Exposure to advanced security testing methods such as penetration testing, robustness tests, DoS tests, and vulnerability scanning for both containerized and non-containerized environments.
• Practical knowledge of microservices, containers (Docker, Kubernetes, Helm, Operators), and CI/CD/DevOps practices.

Come create the technology that helps the world act together

Nokia is committed to innovation and technology leadership across mobile, fixed and cloud networks. Your career here will have a positive impact on people’s lives and will help us build the capabilities needed for a more productive, sustainable, and inclusive world.
We challenge ourselves to create an inclusive way of working where we are open to new ideas, empowered to take risks and fearless to bring our authentic selves to work

What we offer

Nokia offers continuous learning opportunities, well-being programs to support you mentally and physically, opportunities to join and get supported by employee resource groups, mentoring programs and highly diverse teams with an inclusive culture where people thrive and are empowered.

Nokia is committed to inclusion and is an equal opportunity employer

Nokia has received the following recognitions for its commitment to inclusion & equality:

• One of the World’s Most Ethical Companies by Ethisphere
• Gender-Equality Index by Bloomberg
• Workplace Pride Global Benchmark