Information Security Manager

Are you passionate about securing sensitive data, information systems, and operational technologies in a rapidly evolving digital landscape? If so, we have an exciting opportunity for you. We are looking for an Information Security Manager to lead our information and cyber security initiatives across the Nordic region. You can be based in Espoo, Tampere or Joensuu (Finland) or Eskilstuna or Stockholm (Sweden), In this role, you will be at the forefront of protecting critical assets, ensuring compliance with international regulations and standards, and fostering a proactive security culture throughout the organization.

If you have a proven track record in information and cyber security, a talent for coaching others, and the ability to turn identified needs into actionable plans while ensuring their successful execution, we want to hear from you.

What You Would Do As Our Information Security Manager

As part of the team, you would own and further develop the Information Security Management System (ISMS), lead related programs and initiatives, and collaborate with stakeholders to mitigate information and cyber security risks while strengthening organizational resilience. You would report to the Head of Risk Management and Security and be a member of the Nordic BA’s Risk Management and Security team.

You would also:

• Help shape our strategy for securing information and operational assets by ensuring continuous improvement and implementing policies, directives and guidelines aligning with our business objectives and relevant regulations and standards, such as NIS2, Swedish Protective Security Act, and ISO/IEC 27001.
• Lead the Nordic BA Security Council and the Security Champion programs and implement awareness and competence development initiatives to foster a proactive and informed security culture across the organization.
• Provide expert guidance on securing IT and OT environments, systems, applications, and devices, and support the implementation of effective security measures.
• Actively drive information and cyber security risk management process and support third line of defense in addressing information and cyber security non-conformities and incidents, providing expert guidance within your area of responsibility.
• Improve and oversee supplier information security management processes and support customer engagements by responding to information and cyber security-related inquiries, RFPs, and bid/tender requests.
  
  

The Skills And Experience You Need

We are looking for someone who has:

• Over 5 years of experience in Information Security and Cyber Security, supported by a Bachelor’s or a Master’s degree in Computer Science, Cybersecurity, Information Technology, or a related field.
• Strong technical foundation in securing IT and OT infrastructures, including systems, applications, operating environments, networks, and mobile/web technologies.
• Proven track record in leading security programs such as awareness, risk management, and cyber initiatives across complex organizations. Able to translate identified needs and gaps into actionable regional execution plans aligned with business objectives.
• Solid understanding of relevant laws and regulations (e.g. NIS2), and industry standards and frameworks such as ISO/IEC 27001 and NIST CSF 2.0.
• Experience working in international teams and environments, with excellent verbal and written proficiency in English.
  
  

We consider it an advantage if you have experience with the Secure Software Development Lifecycle (SSDLC) and knowledge of SecDevOps practices; familiarity with cloud security platforms such as AWS, Azure, or GCP; understanding of IoT and product security regulations including CRA and RED DA; and hold relevant certifications such as CISSP, CISM, CCSP, CSSLP, or ISO 27001 Lead Implementer.

What We Offer

We’re passionate about providing amazing opportunities and benefits, so you can continue and progress a lifelong career with us – here’s what we have to offer:

• Learning and career development opportunities, whether it’s online learning, management training or enhancing your skills.
• A competitive salary and incentive schemes.
• Agile working.
• The opportunity to develop your career in a respected global group.
• Motivated and encouraging team around you.
• Wellness benefits.
  
  

We review applications regularly, so don’t wait

We are building diverse, inclusive teams, and encourage applications from everyone who can see themselves working with us. Just set up your profile and apply here. Please submit your application with your salary expectations.

To make sure your personal data is safe, we don’t look at any applications sent by email or post. The recruitment process also includes standard personnel security clearance for the selected candidate. We are a smoke-free workplace. If you have any questions about the role, please email, Pekka Rahkamaa, Head of Security & Risk Management Nordics, at [email protected] or the process, please email Alexandra Kymäläinen, Talent Acquisition Business Partner, at [email protected] .

Let’s create a safer and more open world - together!

To find out more about us, visit www.assaabloy.com .

We are the ASSA ABLOY Group

Our people have made us the global leader in access solutions. In return, we open doors for them wherever they go. With nearly 63,000 colleagues in more than 70 different countries, we help billions of people experience a more open world. Our innovations make all sorts of spaces – physical and virtual – safer, more secure, and easier to access.

As an employer, we value results – not titles, or backgrounds. We empower our people to build their career around their aspirations and our ambitions – supporting them with regular feedback, training, and development opportunities. Our colleagues think broadly about where they can make the most impact, and we encourage them to grow their role locally, regionally, or even internationally.

As we welcome new people on board, it’s important to us to have diverse, inclusive teams, and we value different perspectives and experiences.