Chief Information Security Officer

Volue is Europe’s leading independent provider of software to the European energy and grid industry. Volue provides innovative software to optimize energy production and physical power trading for major European producers, accelerating the energy transition and digitalization of critical infrastructure. Headquartered in Norway, Volue employs over 700 people across Europe.

We are now seeking an experienced and strategic Chief Information Security Officer (CISO) to lead our information security efforts, ensuring the protection of our systems, services, and customers.

As CISO, you will be the domain expert on cyber security in Volue, responsible for developing, maintaining, and improving our information security management framework. Your work will safeguard our software development, customer-facing systems, and corporate environment. You will collaborate closely with leaders across the organization, external stakeholders, and relevant authorities to ensure compliance and best practices in information security.

What you will be doing to make a difference:

• Develop, lead, and continuously improve Volue’s Information Security Management System (ISMS) and related documentation.
• Foster a culture of information security awareness across the organisation, including regular communication, training, and guidance for all employees at every level.
• Oversee Volue compliance with applicable security standards, data protection legislation, and industry best practices.
• Collaborate with the CTO to ensure secure software development and customer-facing systems.
• Set requirements for operational IT and physical security in cooperation with the Head of IT Operations & Digitalisation.
• Lead internal and external information security audits, manage follow-up actions, and drive continual improvement.
• Act as Volue’s primary point of contact for all security-related matters, including incident investigation and response, with clear reporting to executive leadership and relevant authorities
• Perform and maintain corporate-level risk analyses and oversee segment-specific assessments.
• Measure and report on the maturity and cyber security posture of the organization.
• Maintain valuable networks with authorities and industry actors
• Provide expert guidance for cyber security in commercial and pre-sales activities.

What you need to succeed:

Education & Certifications

• BSc or MSc in Computer Science or a related field with a focus on software development.
• Education or significant experience in Cyber Security, with relevant certifications
• Project management certification (preferred).

Experience

• Minimum 5 years of relevant experience in information security within the software industry
• Proven track record managing cross-functional projects
• Experience working with Information Security standards and regulatory compliance e.g. NIS2, GDPR and DORA
• Experience with Risk Management Frameworks, vendor risk management and supply chain security
• Strong understanding of software development and agile practices.
• Experience with incident response leadership
• Experience with management and board level reporting
• Experience working in international environments with English as a primary language.
• Ideally: minimum 2 years of experience as a CISO in a SaaS software company
• Ideally: experience with assessing third-party and open-source components regarding Cyber Security
• Ideally experience with guiding, preparing and executing security certifications and attestations like ISO27001 and SOC2

Skills

• Structured, self-driven, and proactive.
• Skilled in influencing and achieving buy-in across stakeholders.
• Strong interpersonal and communication skills (English, verbal and written).
• Capable of driving progress even through challenges or resistance.
• Skilled in mentorship and team development, including lateral leadership in project structures
• Strong verbal and written communications skills in English, including the skill to communicate security topics across different groups, from the board-level to technical development, IT and Operations-teams
• Strong crisis communication skills
• Cultural adaptability

Reasons to join Volue team and what we offer:

• Large degree of influence within the role
• highly engaged colleagues in one of Europe’s only scaled green tech companies, within an innovative and international work environment
• Competitive compensation package
• Flexibility with meaningful autonomy

We are looking to hire for Volue offices in Gdansk, Oslo or Trondheim but will be ready to consider other locations for the right candidate.

In Volue, we cherish each employee’s competence, ideas and personality. Let your skills and talent be a part of our team – and let us leave our mark on the world together!

Company Culture

In Volue, we believe that in order to be a successful company, we need to bring everyone to the table.

We look at diversity as a competitive advantage. A diverse workforce enables better decision-making and creates more value. By inclusion, we refer to the sense of belonging and being part of a community at work. We want the people of Volue to feel welcome, valued and not least encouraged to bring their whole, unique selves to work.

Volue is about people. From staff to client, people are at the center of all our operations, and we always strive for a flat structure where everyone feels included, appreciated and recognized for their individual efforts. Or as we call it "ONE Volue". We hire talented individuals, regardless of gender, race, ethnicity, ancestry, age, disability, sexual orientation, gender identity or expression, cultural background or religious beliefs.