Two employees working at the office

Detection, prevention, response - staying ahead of cyber threats

Nowhere is cybersecurity more critical than in the banking industry, where the stakes are high, and the threats are continuously evolving. With an increasingly complex threat landscape, banks like Nordea are targets for cyber-attacks. At Nordea, we believe that the foundation of success lies in a strong defence. Let's delve into how Nordea’s cybersecurity professionals are leading the charge in safeguarding customers data and financial assets.

Why cybersecurity matters 


Chatrine Höök, Head of Access Management at Nordea, notes, "Bank robberies are no longer confined to physical attacks; they now manifest as cyberattacks." 
 

As one of Europe’s top banks, Nordea's commitment to cybersecurity goes beyond protecting customers—it’s about safeguarding the integrity of the financial system, mentions Christoffer Söderholm, Area Lead for Cyber Problem Management and Remediation Capabilities at Nordea. 
 

Magdalena Piechocka, IT Security Specialist in data protection and encryption emphasizes, "Our cybersecurity efforts aren't just about securing data; they're about preserving trust for both customers and employees. We're key to maintaining Nordea's operational integrity." 

 

Working in unison 


At the heart of Nordea’s cybersecurity strategy is a team, composed of experts working together, forming a multi-layered barrier against cyber-attacks. We focus on five key areas: identity, protect, detect, respond and recover.  
 

Identity: In cybersecurity, we map out potential risks, "like an architect ensures a building’s foundation is solid. This helps us understand and manage cyber threats, allowing us to anticipate challenges before they become critical” adds Christoffer.  
 

Protect: “By rigorously testing our defences and scenarios, we assess our readiness against cyber threats,” says one of our Cybersecurity professionals. This proactive approach helps us identify and fix vulnerabilities before they're exploited. 
 

Detect: "Our teams serve as the vigilant eyes and ears of Nordea's cybersecurity function. We constantly scan the global threat landscape for any signs of potential breaches or anomalies” mentions Magdalena. This vigilance allows us to identify emerging risks before they can escalate successful attack. 
 

Respond: "We investigate and manage security alerts and stand ready to spring into action at a moment's notice”, says Christoffer Söderholm. Our team is constantly monitoring our systems, using advanced tools to contain threats and minimise any impact on our systems and data. Through continuous monitoring, we remain prepared to deploy rapid responses, mitigating the impact of incidents and safeguarding our customer’s data and banking services.  
 

Recover:  As recovery is all about resilience and being able to bounce back from any disruption, “our cybersecurity teams work together with all units of the bank to ensure that together we can withstand any challenge and keep the bank’s services running for our customers” mentions Christoffer.  
 

While each team operates within its specific domain, fostering collaboration remains essential for ensuring a cohesive and comprehensive cybersecurity strategy. At Nordea, professionals working with Access Management are part of cybersecurity’s foundations. Chatrine sheds light on the team's crucial role, emphasising, "Access Management is not just a support function; it's the backbone of our security capabilities." Their careful attention to detail and adherence to best practices ensure that Nordea’ cybersecurity remains robust and resilient against evolving threats. Read more about Identity Management at Nordea.

 

The cat and mouse chase: Staying ahead of the trends  


In the ongoing battle against cyber threats, Nordea adopts a proactive approach, "It's not a question of if, but when it happens." Christoffer sheds light on this approach: "We don't wait for threats to come to us; we actively seek them out. By identifying vulnerabilities before they're exploited, we strengthen our defences and mitigate risks effectively. This forward-thinking mentality underscores Nordea’s commitment to outmanoeuvring cyber adversaries in the ongoing cat-and-mouse game of cybersecurity.”  

Moreover, fostering a culture of continuous learning further strengthens Nordea’s defence expertise. Magdalena highlights the company's investment in employee development through structured learning programs, and rotation to expose employees to diverse cybersecurity domains.  
 

Additionally, Nordea’s-wide Graduate Programme also provides aspiring cybersecurity professionals with great opportunities. "Graduates have the chance to rotate through various cybersecurity teams within Nordea," explains Christoffer. "This exposure allows them to gain a broad understanding of cybersecurity practices and find their niche within the field." Chatrine adds, "We've seen the success of this programme first-hand, with graduates seamlessly integrating into our teams and making significant contributions to our cybersecurity efforts.” 

 

Building a cohesive culture and embracing exciting challenges at Nordea  
 

Cybersecurity professionals at Nordea shared sentiment of working alongside highly skilled colleagues in an international environment that continually challenges and inspires. Chatrine highlights, "Nordea has already attracted a lot of great people. It's a highly skilled environment that keeps you on your toes, everyone you meet is good at what they do”.  
 

Magdalena pitched-in, "One of the most thrilling aspects is knowing that our work contributes to keeping not only our customers' data safe but also our colleagues' data safe across the globe is incredibly rewarding.”  

Name:
Magdalena Piechocka
Title:
IT Security Specialist

I joined Nordea 7 years ago, and after 3 years, I felt it was time to explore new opportunities. Nordea encourages growth and values diverse skills, so I made the move into Cybersecurity. It’s been 4 years since I joined the team, and I can honestly say I’m in the right place. The work is interesting, the global environment keeps things dynamic, and I feel like what I do really matters.  

Name:
Christoffer Söderholm
Title:
Area Lead for Cyber Problem Management and Remediation Capabilities

Contrary to many of my nearest colleagues, my education background is not within IT, but in Engineering.  I actually got into cybersecurity by coincidence. Shortly after graduating from my engineering studies, I had landed a SAP consultant position at a large consultancy firm. However, just before joining, the whole team was laid off and all their recruitment was revoked. To my luck, I got instead recommended for a position in another department (Cyber Security) within the same company. Here in the Cyber Security organization, I am leading a team of problem solvers that investigate security gaps and influence risk mitigating actions to treating them. 

Name:
Chatrine Höök
Title:
Head of Access Management

I started my journey at Nordea two years ago to lead a team within Identity and Access Management (IAM). IAM is part of Cybersecurity at Nordea, which in my opinion is the right place because it is a key component of Cybersecurity at Nordea, ensuring proper control over who has access to information. It's a critical part of maintaining strong security hygiene within the company 

What is Nordea Technology

Nordea is a place where traditions meet tomorrow. We’re not just a bank; we’re a tech employer on a mission to evolve finance securely and responsibly. Together, we impact millions of people’s daily lives by ensuring they can access our solutions anytime, anywhere, while safeguarding their personal data and wealth.

Join our dynamic technology teams in the Nordics, Poland or Estonia. Work alongside diverse, tech-savvy, and forward-thinking individuals who are driven by a growth mindset and a commitment to excellence.

See our open positions

Read more about Nordea Technology

Tech talents
Meet our talents
Blog
Careers