Cybersecurity Specialist

About the Role: 

As a cybersecurity specialist at Stena Metall Group, you will play a key role in strengthening our cyber-defense capability to support the business in implementing strong security practices. You will continuously assess our security posture and identify improvements to prevent and minimize the impact for our businesses.  

Your responsibilities include driving initiatives, governance and helping stakeholders to define relevant security controls. Risk will be used as a guideline to prioritize your initiatives and daily tasks. You will also provide strategic and tactical security guidance collaborating closely with technical teams that are responsible for various platforms. 

Key responsibilities – include, but are not limited to: 

• Work as a trusted advisor that support business initiatives in matters related to cybersecurity. 
• Identify, initiate, and lead initiatives to improve cybersecurity area. 
• Carry out security assessments and audits. 
• Develop and drive the implementation of procedures, guidelines and requirements within the cybersecurity area. 
• Cordinate response efforts for larger security incidents 
• Providing support in the enterprise architecture within the cybersecurity. 
• Stay updated on emerging threats and security technologies. 
• Contribute to the spread of knowledge about Cyber- and IT security. 

It starts with you! 

You have a passion for cybersecurity. You demonstrate commitment, a sense of service and integrity, and are accustomed to working independently with the associated freedom and responsibility for your focus areas. 

Your curiosity and openness to other people's knowledge as well as your ability to share your own will be key factors with us. You are structured and can keep calm in stressful situations. As the work involves several contact points within the Stena Metall Group, you enjoy working in different contexts and communicate freely in speech and writing in both Swedish and English. 

You also have:  

• Experience of working with security frameworks such as (CIS Controls, ISO27001, NIS2). 
• Experience with the vulnerability management process, including identifying, assessing, prioritizing, and remediating security vulnerabilities. 
• Broad knowledge of technical domains such as public clouds, cryptography, networking, servers, clients, and identity management, with a strong emphasis on secure design and management of security controls. 
• Have an understanding of the development process and risks associated with it. 
• Relevant certifications CISSP, CCSP, CISM etc. is seen as an advantage