Vestas
Cyber Security Engineer
Full details on LinkedIn
The complete job description, requirements, and application details are available on the original posting.
About Vestas
Vestas Wind Systems A/S is a Danish multinational company founded in 1945, originally as a blacksmith shop. It transitioned to focus exclusively on wind turbine manufacturing in 1989 and has since become a global leader in renewable wind energy solutions. With over 125 years of cumulative expertise, Vestas emphasizes innovation in wind technology and has achieved significant milestones, including the installation of 50 GW of capacity by 2012. The company specializes in wind turbines and offers comprehensive renewable energy solutions, covering development, manufacturing, installation, and operation. Vestas has evolved its turbine designs from early prototypes to advanced onshore and offshore models, contributing to clean energy generation in over 15 countries. Its commitment to high-efficiency designs and full lifecycle production control positions wind energy as a competitive alternative to fossil fuels.
Security at Vestas
Compiled from public job postings, careers pages, and company materials. Data may not reflect current state — verify during interviews.
Security Philosophy
“Vestas follows a risk-based and customer-centric security philosophy, emphasizing the protection of digital services and APIs through proactive vulnerability reporting. - **Stated AppSec Mission**: Information not publicly available. - **Developer Enablement vs. Gatekeeping**: Information not publicly available. - **Risk Philosophy**: "A risk-based and customer centric approach that enables security capabilities and outcomes."– Security Risk Policy Statement (https://www.vestas.com/content/dam/vestas-com/global/en/sustainability/policies/Security%20Risk%20Policy%20Statement.pdf.coredownload.pdf), Policy. - **Stated Pain Points or Goals**: "Please do report: OWASP Top 10 related vulnerabilities"– security.txt (https://vestas.com/.well-known/security.txt), Web Page.”
Security Team
Vestas security is led by the Chief Information Security Officer (CISO), with oversight from the Board of Directors. The team includes Cyber Security Engineers responsible for embedding security into DevOps workflows and managing cloud-native security across Azure and AWS. - **Org Structure & Reporting Line**: "The Chief Information Security Officer (CISO) is responsible for upholding a risk-based security at Vestas."– Security Risk Policy Statement (https://www.vestas.com/content/dam/vestas-com/global/en/sustainability/policies/Security%20Risk%20Policy%20Statement.pdf.coredownload.pdf), Policy. - **Key Public-Facing Leaders**: Information not publicly available. - **Team Size Estimate (as_of:)**: Information not publicly available. - **Active AppSec Job Postings (as_of:)**: - Count: 1 (Cyber Security Engineer) - Common Skill/Tool Patterns: "Embed security controls into CI/CD pipelines and DevOps workflows"– Cyber Security Engineer (https://careers.vestas.com/job/Pasay-Cyber-Security-Engineer-00-1300/1385754133/), Job Post.
Key Initiatives
Vestas is actively integrating security into its digital transformation, focusing on DevSecOps, cloud security, and automated vulnerability intake. - **Security Champions Program**: No Evidence Found. - **"Shift Left"in Practice**: "Embed security controls into CI/CD pipelines and DevOps workflows"– Cyber Security Engineer (https://careers.vestas.com/job/Pasay-Cyber-Security-Engineer-00-1300/1385754133/), Job Post. - **Vulnerability Management Process**: - Intake: "Contact: mailto:appsecurity@vestas.com"– security.txt (https://vestas.com/.well-known/security.txt), Web Page. - **Secure SDLC Artifacts**: "collaborate on container and Kubernetes security architecture"– Cyber Security Engineer (https://careers.vestas.com/job/Pasay-Cyber-Security-Engineer-00-1300/1385754133/), Job Post. - **Recent Initiatives (Last 6 Months)**: "Leverage AI-powered security tools (e.g., Microsoft Security Copilot)"– Cyber Security Engineer (https://careers.vestas.com/job/Pasay-Cyber-Security-Engineer-00-1300/1385754133/), Job Post.
Preparing for an AppSec interview?
Get the weekly briefing 2,000+ security pros trust.