REMOTECONTRACT
Telecom Security Integration Engineer — Ericsson RAN & Nokia NetGuard IAM
Telence Solutions
Remote · remote · Posted 12d ago
Your match
Sign in to see your match score, skill gaps & tailored resume.
Section · 01
About this role
Location: Remote · North America
Type: Contract
About Telence Solutions Telence Solutions is a multi-vendor technology services company delivering end-to-end design, migration, and managed services across optical networking, IP routing, and telecom security. As carriers accelerate 5G deployments, we are expanding our security practice to help service providers secure their RAN infrastructure with enterprise-grade identity and access controls.
Role Overview We are seeking an experienced Telecom Security Integration Engineer to lead engagements integrating Ericsson Radio Access Network (RAN) infrastructure with Nokia NetGuard Identity Access Manager — a centralized security gateway that controls, monitors, and audits privileged access across 5G network infrastructure. This is a hands-on, client-facing engineering role. You will work directly with carrier and enterprise customers to design and deploy secure access frameworks across multi-vendor RAN environments, ensuring that privileged access to physical and virtual network resources is managed, audited, and compliant at scale.
Key Responsibilities Nokia NetGuard IAM Deployment & Integration
- Deploy and configure Nokia NetGuard IAM as the centralised access control layer across Ericsson RAN environments, including eNodeBs, gNodeBs, and associated OSS/BSS systems
- Configure user access for individual network resources or groups of resources using dynamic or static network resource groups, with both shared service accounts and dedicated named user accounts provisioned by NetGuard IAM
- Implement the Machine-to-Machine (M2M) module to remove privileged credentials from scripts and applications, with credentials retrieved securely at runtime from the NetGuard IAM application server
- Deploy the Access Governance Module (AGM) to enable end-users to request access to network resources, with appropriate network resource owner approval workflows
- Integrate NetGuard IAM with corporate identity management systems, HR directories, and multi-factor authentication platforms Ericsson RAN Security
- Apply IAM controls across Ericsson RAN elements including Radio Base Stations (RBS), Radio Network Controllers, Cloud RAN (CRAN) nodes, and associated element managers
- Manage role-based access control (RBAC) policies across Ericsson OSS-RC, ENM (Ericsson Network Manager), and associated NMS platforms
- Automate and centrally manage privileged account passwords across all physical or virtual Ericsson network functions, assigning privileges by network function type and management/orchestration system
- Configure and validate IPsec and secure transport between RAN elements and the core network in alignment with NetGuard Certificate Manager Security Architecture & Compliance
- Design Zero Trust access frameworks for multi-vendor RAN environments, incorporating least-privilege principles across Ericsson and co-located Nokia elements
- Enforce consistent 5G security policies including automated password rotation of all privileged credentials following predefined password syntax rules
- Conduct access audits, produce compliance reports, and support customers through regulatory reviews (3GPP, GSMA, NIST, ISO 27001)
- Integrate NetGuard IAM telemetry into Nokia NetGuard Cybersecurity Dome or third-party SIEM/SOC platforms for unified visibility Client Engagement
- Lead technical discovery sessions, architecture design workshops, and deployment planning with carrier customers
- Produce solution design documentation, integration runbooks, and operational handover packages
- Act as escalation engineer for IAM-related incidents across Telence's carrier accounts
- Mentor junior engineers within the security practice
Required Qualifications Experience
- 6+ years of hands-on experience in telecom network engineering, security, or systems integration
- 3+ years direct experience with Ericsson RAN platforms — including ENM, OSS-RC, RBS/gNB configuration, and element management
- Demonstrated experience deploying Nokia NetGuard IAM or equivalent Privileged Access Management (PAM) solutions in a carrier-grade environment
- Solid understanding of 4G/5G RAN architecture: LTE eNodeB, 5G NR gNodeB, CU/DU split, Cloud RAN, and Open RAN concepts
- Experience with identity and access management frameworks: RBAC, ABAC, PAM, PIM, SSO, and MFA in network infrastructure contexts Technical Skills
- Nokia NetGuard IAM: deployment, RBAC configuration, M2M module, AGM workflows, password vaulting, session logging
- Ericsson platforms: ENM, OSS-RC, Ericsson Network Manager, RAN configuration and parameter management
- Network security protocols: IPsec, TLS/SSL, RADIUS, TACACS+, LDAP/Active Directory integration
- PKI and certificate management: familiarity with Nokia NetGuard Certificate Manager or equivalent CA solutions for RAN IPsec tunnels
- Scripting and automation: Python or Bash for IAM workflow automation and integration tasks
- Linux/CLI: confident with log analysis, system administration, and troubleshooting in Linux-based network function environments
- Networking fundamentals: TCP/IP, routing, VPN, network segmentation, and firewall policy Standards & Frameworks
- 3GPP security standards for RAN and 5G core (TS 33.xxx series)
- GSMA security guidelines and NIST Cybersecurity Framework
- MITRE ATT&CK for Mobile / FiGHT (5G Hierarchy of Threats)
Preferred Qualifications
- Experience with Nokia NetGuard Cybersecurity Dome or NetGuard XDR integration
- Familiarity with Open RAN (O-RAN Alliance) security specifications
- Exposure to multi-vendor RAN environments combining Ericsson with Nokia or Samsung RAN elements
- Experience in an MSSP, professional services, or systems integrator environment
- Relevant certifications: Nokia or Ericsson RAN certifications, CISSP, CISM, CompTIA Security+, or GIAC credentials
What Telence Solutions Offers
- Competitive salary + performance bonus
- Comprehensive health, dental, and vision benefits
- Remote-first with flexibility for hybrid or on-site client work
- Funded training and vendor certification support
- Exposure to large-scale carrier and enterprise 5G deployments across North America and EMEA
- A tight-knit, engineering-led team where your expertise directly shapes outcomes
Sourced from linkedin · view original
Let the agent run this one for you.
Tailored resume, auto-apply, and referral lookup — in under 2 minutes.
Section · 02