Senior Information Security Consultant

About Us

We are the independent expert in assurance and risk management. Driven by our purpose, to safeguard life, property, and the environment, we empower our customers and their stakeholders with facts and reliable insights so that critical decisions can be made with confidence.

As a trusted voice for many of the world’s most successful organizations, we use our knowledge to advance safety and performance, set industry benchmarks, and inspire and invent solutions to tackle global transformations.

About The Role

We are seeking an experienced Information Security Consultant with a distinguished background in cyber security, governance, and risk management. As an Information Security Consultant, you will play a pivotal role in helping our clients navigate the complex landscape of cyber threats and risks. Your responsibilities will include implementing robust security controls, ensuring compliance with industry standards and regulations, and assisting clients in enhancing their overall information security posture.

In This Role, You Will

• Develop and implement cyber security strategies and roadmaps tailored to our clients' specific needs.
• Be part of continuous development regarding ISMS and GRC contributing to Nixu way of working and offerings.
• Contribute to achieving ISO 27001/27701 certification, differentiating our clients from their competitors.
• Conduct thorough security and data privacy risk assessments.
• Conduct Vendor risk assessments and audits.
• Implement security controls and promote security awareness across diverse organizations.
• Create operational guidance for the compliant implementation of third-party services and evaluate associated risks.
  
  

Location: Espoo, Finland

Posting Deadline: 28/02/2025

What we offer

Be one of us

We have recently embarked on an exciting journey – formerly known as Nixu, now combined forces with DNV and Applied Risk, with the goal of creating a leading European cyber security services business known as DNV Cyber.

As DNV Cyber, we are passionate about cyber security and take pride in the way we are impacting the society we live in. We encourage you to excel professionally through knowledge sharing and demanding cases. At DNV Cyber, you'll have 500 colleagues who share an interest in cyber security with you.

At DNV Cyber, you will have the opportunity to work on a variety of cases and customers from various industries. You will be working in an international environment with global opportunities to advance in your career. With us, you will be surrounded by the most talented people in the cyber security field. We encourage you to keep challenging yourself by exploring new areas of expertise. You will have the opportunity to fine-tune your skills and become an expert in one or more areas within cyber security.

Join us on an exciting adventure of growth, meaningful work, and shaping the future through cyber security!

"Power up DNV – refer from your network".

DNV is an Equal Opportunity Employer and gives consideration for employment to qualified applicants without regard to gender, religion, race, national or ethnic origin, cultural background, social group, disability, sexual orientation, gender identity, marital status, age or political opinion. Diversity is fundamental to our culture and we invite you to be part of this diversity.

About You

To be able to succeed in this position, you will need:

• Experience in implementing Information Security Management Systems (ISMS) and achieving ISO 27001 certification.
• In-depth knowledge of security policies and the ability to develop and anchor security policies and requirements.
• Proven experience in working with cybersecurity and conducting comprehensive risk assessments.
• Competence in cloud security and the ability to foster security awareness throughout organizations.
• Strong communication skills, enabling effective collaboration with individuals at all levels within an organization.
  
  

Requirements

• Bachelor's degree in IT or a related field.
• Certifications such as ISO 27001 Lead Implementor and ISO 9001 Internal Auditor are considered a plus.
• Experience with GDPR and familiarity with security standards like ISO 2700x and the EU CRA, Cyber Resilience Act, NIST, CSA CCM.
• Fluent language skills in English and Finnish.
  
  

Personal Qualities

• Analytical thinking and the ability to solve complex problems.
• Strong attention to detail and commitment to accuracy.
• Ability to work independently and drive projects to successful completion.