IT Security & Risk Officer

Location: Gothenburg, Sweden (100% On-site)

Assignment Period: 02 Mar 2026 – 31 Dec 2026

Seniority Level: Expert

Remote Work: 0% (On-site presence in Gothenburg is mandatory)

Application Deadline: 22 Feb 2026

Role Overview:

We are seeking a proactive and strategic "IT Security & Risk Officer" for one of our client's to lead their cybersecurity, risk management, and compliance initiatives across client’s global organization. This cross-functional role bridges the gap between high-level strategic development and hands-on execution. Your primary mission is to enhance cybersecurity capabilities and reduce business risks while maintaining the organizations agility to deliver high business value.

What You'll Do?

• Risk Management: Lead and quality assure Threat Analysis and Risk Assessments (TARA) to identify and mitigate vulnerabilities.
• Compliance & Standards: Ensure organizational alignment with international standards and regulations, including ISO 27001, NIS2, GDPR, CRA, and UNECE R155/R156.
• Security Architecture: Review modern cloud services from a security perspective and drive a Security by Design culture across the organization.
• Audit & Governance: Support security audits and apply Lean Governance principles to improve operational efficiency without compromising the risk posture.
• Collaboration: Act as a liaison between Enterprise Architecture, cross-functional DevSecOps teams, product development, and operational stakeholders.
• Operational Security: Support day-to-day cybersecurity processes in a complex, global environment.

Who You Are?

• Technical Expertise: Strong background in risk assessment, TARA, and security auditing.
• Security Principles: Deep understanding of how to apply security best practices to meet CIA (Confidentiality, Integrity, and Availability) requirements.
• Architectural Vision: Proven ability to review cloud services and modern architectures through a security lens.
• Regulatory Knowledge: Expert experience with ISO 27001, NIS2, and UNECE R155/R156 (Automotive Cyber Security Management Systems).
• Operational Experience: Extensive experience in operational cybersecurity within a global context.
• Soft Skills: A relationship-driven collaborator who takes initiative, motivates peers, and thrives on continuous improvement.
• Language: Professional proficiency in English.

Preferred Skills & Experience:

• Cloud: Hands-on experience with AWS (Amazon Web Services).
• Industry: Prior experience in the Automotive sector.
• Methodology: Background in Agile working environments.
• Specialized Skills: Proficiency in incident response, crisis management, or digital forensics.

Assignment Details:

• Workload: 100% (40 hours per week)
• Rate Type: Hourly

About Sperton:

This Position is Sponsored by Sperton Global, a recruitment and consulting company with an international reach. We are committed to helping our clients achieve success in their hiring processes, finding the right people for the right positions.