Cyber Security Specialist, Lund

About Justera Group

Justera Group AB is a leading Swedish IT consulting firm with great experience specializing in building high-performing technology teams and delivering end-to-end IT solutions. Led by dynamic female executives, Justera Group focuses on helping businesses harness the power of digital technologies to continuously evolve in today’s rapidly changing economy. The company has deep expertise in IT consultancy, software development, and recruitment services, providing clients with purpose-driven, well-trained consultants who consistently deliver efficient and effective results. Justera Group manages the entire talent lifecycle, from hiring to ongoing management, ensuring the right fit for each project on time and within budget. With their strong commitment to quality, collaboration, and client success, Justera Group is a trusted partner for technology innovation across Sweden.

About the Role:

We are seeking a highly skilled Cyber Security Specialist to join our CyberSOC team. In this role, you will help strengthen our cybersecurity posture by managing and enhancing our SIEM platform, addressing incidents from detection to resolution, and ensuring compliance with regulatory and business requirements. This position offers the opportunity to take ownership of critical security tools, work closely with development teams, and make a significant impact on the protection of enterprise systems across a global environment.

Key Responsibilities:

• Manage and operate the SIEM platform, including onboarding datasets, automation, and incident response.
• Investigate and resolve cybersecurity incidents across infrastructure, networks, operating systems, and cloud environments.
• Translate internal and external threats into actionable risks and ensure timely mitigation.
• Collaborate with development and operations teams to integrate security tools and processes effectively.
• Deliver clear, concise reports highlighting trends, risks, and security gaps.
• Ensure compliance with regulatory standards and business security requirements.
  
  

Requirements:

Experience & Skills:

• Minimum 5 years of experience in cybersecurity with expertise in Cyber Threat Management.
• Proven hands-on experience with SIEM platforms (onboarding, automation, incident response).
• Broad technical knowledge across infrastructure, networks, operating systems (Windows, Linux), and cloud (Azure).
• Strong background in incident response, threat detection, and risk-based security practices.
• Familiarity with Agile methodologies and collaboration with development teams.
• Knowledge of Zero Trust principles (preferred).
  
  

Key Competencies:

• SIEM Tools: CrowdStrike, Cribl Edge & Stream, Splunk Core/Enterprise Security.
• Endpoint Tools: CrowdStrike, Palo Alto Cortex XDR, Cylance Protect.
• Cloud Security: Azure Sentinel.
• Security Architecture & Design for SIEM environments.
  
  

Mandatory Skills (at least 3):

• Security Tools: CrowdStrike, Cribl, Splunk, Cylance, Palo Alto XDR.
• Platforms: Windows, Linux.
• Cloud: Azure.
  
  

Desired Skills (at least 2):

Programming/Scripting: SPL, XQL, PowerShell, JSON.

What We Offer:

• A dynamic and innovative workplace driving advancements in cutting-edge robotic technologies
• The opportunity to collaborate with talented cross-functional teams on meaningful and impactful projects
• Competitive compensation and comprehensive benefits package
• A supportive culture that fosters continuous learning, growth, and professional development
• Flexible hybrid working model for an optimal work-life balance
• 25 days of annual leave to recharge and relax
• An annual wellness allowance of 3,500 SEK to support your health and wellbeing