Business Information Security Officer- Vattenfall IT (Flexible)

Vattenfall AB
Stockholm (Solna), Sweden
den 13 januari 2022
den 13 februari 2022
Vattenfall is one of Europe`s largest electricity generators and producers of heat. We operate in Sweden, Denmark, Germany, the Netherlands and the UK. Our strategy is to reduce emissions from power generation with a roadmap aiming at achieving climate neutrality by one generation.

Do you want to help in shaping a fossil free future In one generation while defending our operations? Vattenfall IT is now looking for a Business Information Security Officer (BISO), Vattenfall IT

Our offer

We offer a challenging and international work environment and the possibility to work with some of the best in the field. You will be working in interdisciplinary teams and you can always count on support from committed colleagues. We offer attractive employment conditions and opportunities for personal and professional development. At Vattenfall we also offer staff benefits such as favorable occupational pension agreements, parental leave allowances, flexible working hours and more. Read more about our benefits here:

Vattenfall is facing an challenging security environment with increasing requirements and threats. At the same time we have to be at the forefront of digital innovation to operate new business models for the future energy market. We offer an interesting job in an international setting, where IT touches a very wide array of business operations across several countries, yet needs to be protected. We are looking for a capable person that can manage the Information Security for Vattenfall IT. This not only involves technology, but also secure IT operations, personnel, and culture.

As a Business Information Security Officer, you will have an important role within the Vattenfall IT organization. You will work in the CIO Office, working closely with the CIO and the Corporate Information Security Officer in the department of Vattenfall Corporate Security & Resilience. You will also cooperate with senior managers within Vattenfall IT, as well as other stakeholders across the Vattenfall Group.

Main responsibilities:

• Guide and support the IT line organization in defining Information and IT Security Requirements that need to be met

• Support the Information Asset Classification process and make sure that all Information Assets are correctly identified and classified

• Support the Organization in their control implementation activities according protection needs

• Using Vattenfall's information security control framework to perform regular compliance follow-ups of our suppliers and internally within Vattenfall IT

• Enforce adherence to internal policies, standards and procedures and define corrective action for any violations of these

• Co-operate with other security roles within Vattenfall's Security organization, e.g. ISMS Officer and Security Protection Officer

• Advise on security related incidents, vulnerabilities, requests and exceptions

• Provide audit documentation and reporting related to security

• Maintaining the risk assessment methodology, framework, and metrics up to international standards (e.g. ISO 27000), perform risk analysis on a tactical and strategical level and consequently report the current Vattenfall IT risk landscape to general management.

• Performing risk assessments including analysing current risks and identifying potential IT and information security risks that are affecting the company

• Managing end-to-end risk remediation planning, resolution, and monitoring activities.

• Communicate risk policies and processes within Vattenfall IT, including leading, managing, and motivating staff across the organization to improve IT risk management

• Support contract managers with risk assessments, Security Protection Analyses and dialogs with suppliers related to security

• Prepare and attend in consultations with authorities

Your profile and qualifications:

• Academic degree within relevant area to security or equivalent experience.

• Minimum 5 years of experience in relevant position in a corporate or government environment

• Active Security Certification, e.g. CISM, CISA (ISACA) or equivalent

• Experience of Information Security Management based on ISO27000 standard.

• Practical experience of working with technology teams to translate ISMS controls into technology solutions.

• Current knowledge of relevant Security legislations in Sweden and in the European countries where Vattenfall operates

• Strong command of our corporate language English

As being the right candidate you are structured, process oriented, analytical and equipped with a sound judgment. Your educational and communication skills are at a high level, as well as your integrity and your ability to keep focus on what is important for Vattenfall.

Location: Flexible Vattenfall Office location. The scope of the work is Vattenfall IT, which is organized internationally. Employees are located in the Netherlands, Germany, Sweden, and Poland.

Since Vattenfall is part of the Swedish critical infrastructure many of our positions are security classed. This position is security classed and the final candidate will be subject to a security vetting process, according to the Swedish legislation

We look forward to receiving your application!

We welcome your application in English, including CV and cover letter. The last day to apply is 13th of February 2022.

For more information about the position you are welcome to contact hiring manager Niklas Walter via phone +46722347095 For more information about the recruitment process please contact Teri-Anne Brink,

Trade union representatives in Sweden Sofi Wadström (Akademikerna), Inger Strandberg (Unionen), Christer Gustafsson (Ledarna), Lennart Bengtsson (SEKO). To get in contact with the representatives, please call Vattenfall´s switchboard +46 8 739 50 00.

At Vattenfall we are convinced that diversity contributes to build a more profitable and attractive company and we strive to be good role model regarding diversity. Vattenfall works actively for all employees to have the same opportunities and rights regardless of gender, ethnicity, age, transgender identity or expression, religion or other belief, disability or sexual orientation.

Diversity and inclusion - in everything we do

Read more on how we work with diversity and inclusion here:

Liknande jobb

Liknande jobb