As we consolidate and modernize our tech landscape across NOBA, we're seeking a Cyber Security Analyst with knowledge of secure development practices. Join us at the heart of our transformation - driving secure software engineering and helping us navigate an exciting shift to the cloud.

Our offer to you:

At NOBA, you’ll be a key player in a tech-forward team shaping the future of finance. We offer:

• A front-row seat in our journey from on-premise to cloud-native architecture
• The opportunity to define and embed security practices in a growing, cross-border development organization
• A collaborative and learning-driven culture where your voice matters
• A chance to influence our long-term strategy across NOBA
• Hybrid work, flexibility, and the opportunity to work from either Stockholm or Oslo

About the role:

In this role, you'll act as a trusted advisor to our development teams. Your mission? To integrate security into every step of the SDLC (software development lifecycle), reduce vulnerabilities, and enable secure, scalable growth. You will:

• Advise development teams on secure coding practices and support implementation across the SDLC
• Conduct security assessments, code reviews, and vulnerability scans to identify and mitigate risks
• Define, enforce, and monitor security requirements, policies, and compliance with financial sector regulations
• Develop standardized security reporting for the software development lifecycle at NOBA
• Collaborate with DevOps to embed security in CI/CD pipelines and drive automation
• Investigate incidents, support audits, and provide training to raise security awareness across tech teams.

We’re looking for you who have:

• A background in Software Development with a strong interest for cyber security
• Prior experience in advisory, consulting, or technical lead roles
• Strong understanding of secure coding practices and common vulnerabilities (OWASP Top 10, SANS CWE).
• Experience with security testing tools (e.g., SAST, DAST, penetration testing tools).
• Knowledge of regulatory requirements (e.g., GDPR, PSD2, DORA, EBA).
• Familiarity with cloud security principles (AWS, Azure, or Google Cloud).
• Modern development methodologies
• High proficiency in spoken and written English

Experience in DevSecOps and CI/CD pipeline security is considered a plus as well as previous experience working in the financial domain.

You will thrive in this role if you’re curious, driven by complex challenges, and eager to influence how secure development is practiced across teams. You build trust through a combination of empathy, expertise, and clear communication - and you're confident guiding others even when the way forward is uncertain. You embrace change, question established ways of working, and bring clarity and structure where it’s needed most. With an eye for both detail and the bigger picture, you’re committed to making software development not only more secure but also smarter and more sustainable.

In addition to this, it is important to us that you recognize yourself in our values: we are wholehearted, we collaborate and we take the lead.

Have you heard of NOBAVERSE?
In our NOBAVERSE, we value openness, trust, and diversity. Here, you can influence your own development and have fun along the way to achieving our goals – all in a workplace that’s a little extra bubbly! ✨

Read more about our employee value proposition on our careers page.

Read more about how our recruitment process works in the FAQ. 

We care for your privacy and, with reference to the GDPR, would like to ask you not to include any sensitive personal data in your application, for examples information about ethnic origin, political opinions, religious beliefs or information about your health.

Read more about how we handle your personal data here.

If you have any questions or concerns about the position, please contact the responsible recruiter.

We look forward to receiving your application! 🙏✨