Security Compliance Manager – Nexus Tieto Indtech (m/f/d)

Job Description

Security Compliance Manager – Nexus Tieto Indtech (m/f/d)

Introduction

We are looking for a Security Compliance Manager to strengthen our security governance, regulatory compliance efforts, and customer‑driven security assurance within Nexus. In this role, you will work closely with product, delivery, sales, customer and central GRC teams to ensure adherence to regulatory frameworks, customer requirements, and corporate policies.

Key Responsibilities

Regulatory & Customer Compliance

• Coordinate compliance activities for DORA, NIS2 and customer‑specific frameworks.
• Ensure internal teams implement required controls and follow compliance obligations.
• Track compliance status, deviations and corrective actions.
• Participate in Indtech security and compliance forums.
  
  

Security Documentation, RFI/RFP Support & Bid Reviews

• Provide security documentation for RFI/RFP processes.
• Conduct security reviews of bids.
• Collaborate with sales and product teams on security requirements.
  
  

Audit Management (ISO, ISAE, Customer Audits)

• Support ISO 27001, ISAE 3402 and customer audits.
• Prepare audit evidence and track findings.
• Ensure findings are closed with responsible teams.
  
  

Supplier Security & Third‑Party Management

• Conduct supplier security assessments.
• Follow up supplier documentation and findings.
• Support Sourcing (procurement) in supply chain compliance.
  
  

Procedures, Training & Governance

• Develop and maintain security procedures and governance documents.
• Conduct internal security and compliance training.
• Maintain policy and control documentation overview.
  
  

Annual Security Plan & Continuous Improvement

• Maintain the annual security plan.
• Monitor maturity development and compliance performance.
• Identify and drive improvement initiatives.
  
  

Qualification Requirements

Education & Experience

• Bachelor’s or master’s degree in IT/security/compliance or equivalent experience.
• Experience in security compliance, governance or regulatory frameworks.
• Knowledge of ISO 27001, ISAE 3402, DORA, NIS2.
• Experience in audits and stakeholder management.
  
  

Skills & Competence

• Strong understanding of information security controls.
• Ability to interpret regulatory and customer requirements.
• Strong communication and documentation skills.
• Structured, analytical and proactive.
  
  

Personal Attributes

• High integrity and responsibility.
• Independent and solution‑oriented.
• Comfortable working with many stakeholders simultaneously.
  
  

Why Join Us

In this role, you will strengthen Nexus’ compliance maturity and work closely with operational, product and corporate teams to ensure trust, transparency and security across the organization.

About Indtech Nexus

Nexus supports its customers in business process automation by exchanging and sharing business information with their business partners. We have two service areas: Business Information eXchange (BIX) and Multichannel.

Nexus has a large existing customer base in the Nordics and is a growing business unit within Tietoevry Industry. With a unique combination of global capabilities and local presence, Nexus currently serves more than 4000 customers in 50+ countries around the world - creating a digital advantage for millions every day.

Join us and make your mark!

We look forward to your application!

Please attach your CV or LinkedIn-profile and we’ll reach out to you. Interviews will be held on a continuous basis, so we encourage you to apply today.

If you have any questions regarding this role, please contact Ann Kristin Bøhlum, Head of Data Security & Support, via e-mail [email protected]

Additional Information

At Tieto, we believe in the power of diversity, equity, and inclusion. We encourage applicants of all backgrounds, genders (m/f/d), and walks of life to join our team, as we believe that this fosters an inspiring workplace and fuels innovation. Our commitment to openness, trust, and diversity is at the heart of our mission to create digital futures that benefit businesses, societies, and humanity.

Diversity, equity and inclusion (tietoevry.com)