Cybersecurity Incident Officer

Full Time/Part Time Full Time

Who We Are

At Ikano Bank, we believe work should feel meaningful and inspiring. Together, we create a great place to work where people are inspired to be the best they can be while contributing to a better life for our customers and the long-term success of the Bank. Guided by our Swedish heritage and values: common sense and simplicity, working together and daring to be different, we keep things straightforward and down-to-earth. If you like the idea of being part of a team that works hard, enjoys solving challenges together and dares to do things a little differently, you will feel right at home here.

Digital is the driving force behind the bank’s technology and innovation. We deliver secure, reliable, and competitive products that keep the bank ahead, while enabling growth and expansion into new markets. Digital is not just about keeping systems running—it’s about shaping the future of banking. This is where technology meets opportunity, and where talent drives global impact.

Purpose of the Job In an ever-evolving cyber threat landscape with constantly new emerging threats against the Bank, the role of the Cybersecurity Incident Officer plays a crucial part in forming the Bank’s next level of Cybersecurity incident management. By improving the process and controls connected to this area and to shape the way forward for the Bank’s Cybersecurity threat intelligence program, this role become an important brick in the Bank’s ability to detect and respond to these threats in a timely manner.

Responsibilities of the Job - Lead the development, implementation, driving the evolvement and management of Cybersecurity Incident Management strategies and its capability.

• Oversee the involved processes and the life cycle for Cybersecurity Incident Response and continually focus on improvements opportunities
• Drive the Banks Cybersecurity Incident Response Process in collaboration with our SOC, taking a proactive approach to identify areas of improvements, drive these improvements and by that, achieve a more mature cybersecurity incident response process
• Maintain and develop documentation on service descriptions, standards & procedures and define tactical roadmaps, visions and goals in the area of Cybersecurity Incident Management
• Representation of the Cybersecurity, Risk & Compliance department in various forums such as Change Advisory Board (CAB), Security Review Board (SRB), external IRT forums and other threat intelligence forums
• Keep up to date with the continuous evolving cybersecurity threat landscape in close collaboration with Security Operation.
• Actively engage at specific threat intelligence platforms in order to bring value of relevant data back to the Bank for further decision making. Propose and drive improvement of the Cybersecurity threat Intelligence program to strengthen the Bank's abilities against cyber threats
• Support the Banks SOC during security incident investigations and -breaches
• Provide scheduled metrics reports containing KPI’s and maturity measurements for stakeholders in the Digital organization. The role involves assuring that the appropriate processes are in place and working efficiently in accordance with the risk appetite of the Bank.
• Maintain, develop and propose new quality assurance activities within the area to conclude on control effectiveness
• Follow-up on major and critical security incidents with appropriate problem management process. Ensure root cause analysis is consistently developed for each major or critical security incidents
• Work closely with the Digital organization, Information Security, Risk Control, Compliance, and business units to align cybersecurity initiatives with overall business objectives. Communicate and work with cybersecurity risks and strategies to stakeholders at strategic, tactical and operational levels
• Interfacing with operational teams and service providers to identify and address security issues and process related challenges, provide awareness and education on cybersecurity best practices
• Work with aligning the cybersecurity incident process in hybrid environments incorporating on-premise, private & public cloud and XaaS delivery models. Manage relationships with external vendors and service providers. Ensure that third-party services align with the Bank's cybersecurity standards and requirements
• Assist the security operation domain incorporating security expertise, advisory and operational competence.
• Assist and drive general day-to-day operational security tasks and activities like managing the Cybersecurity, Risk & Compliance backlog, managing security requests and minor exception requests, and change managements with the aspect of security quality assurance.
  
  

Education Level Bachelor's Degree

Experience/Demonstrated Competencies - 5 or more years of progressive experience working with Cybersecurity

• Experience in operational risk and financial regulatory compliance
• Relevant certifications within the cybersecurity incident management domain, e.g. CISSP, CCSP, OSCP, GCIA, GCIH, GCFA
• Strong understanding of cybersecurity incident management- and threat intelligence concepts
• Strong understanding of technical security controls and implementations such as SIEM, firewalls, intrusion detection/prevention systems, antivirus software, and vulnerability scanners
  
  

Language Competencies - Excellent verbal and writing communication skills in Swedish & English

Knowledge required - Understanding of security monitoring, identifying how attacks work and how to detect attackers utilizing SIEM tools.

• Knowledge of common best practices for conducting the different phases efficiently within the life cycle of a security incident
• Can demonstrate knowledge about conducting security assessments, incident response and forensic investigations
• Understanding of reporting needs as well as establishing reporting baselines for appropriate stakeholders
• Proven knowledge around working in hybrid environments incorporating on-premise, private & public cloud and XaaS delivery models
• Previous experience of working in close collaboration with service providers
• Knowledge of security in Lean-Agile & DevSecOps working methodologies
• Knowledge of technologies utilized for e.g. vulnerability scanning, EDR/XDR, WAF
• Knowledgeable of Security Frameworks such as SANS, NIST and OWASP
• Knowledge about, and work experience in, ServiceNow is considered beneficial
  
  

Capabilities for this job - Demonstrates problem-solving and analytical skills, with the ability to analyze complex systems and identify potential vulnerabilities and risks

• Ability to translate requirements into real-world configuration and scenarios
• Clear demonstrable experience of strong communication skills, with the ability to explain technical information to non-technical stakeholders
• Ability to analyze complex systems and identify potential vulnerabilities and risks
  
  

What motivates you? - Strength of creating and maintaining strong relationships with external vendors and service providers, ensuring they meet the bank's cybersecurity standards

• Always committed to enhancement of the bank's cybersecurity resilience, proactively identifying and improving the cybersecurity incident response process and related subprocesses
• Passion for staying at the forefront of cybersecurity trends, evolving threat landscapes and the latest threat intelligence to protect the organization
• Highly collaborative and with a strong desire to mentor and develop team members, sharing knowledge and expertise in cybersecurity
• Motivated by the challenge of developing and implementing comprehensive security strategies to defend against sophisticated cyber threats
• Inspirational in how you fosters a culture of cybersecurity awareness and best practices within the organization, ensuring all team members are informed and vigilant
• Passionate about leveraging technology and innovative solutions to strengthen the bank's defense mechanisms
• Committed to continuous improvement and learning, constantly seeking ways to enhance the bank's cybersecurity incident management capabilities
  
  

Ready to apply?

If this sounds like your kind of workplace, we would love to hear from you. You do not have to tick every single box. What matters most is your drive, your ideas and your willingness to grow with us. Our application process is simple. Just click on the Apply Button and we will get in touch with you soon. Apply today and let us build something different together. You want to know more about Ikano Bank? Check out our videos about culture, social/corporate responsibility and everyday working at the bank. For any questions, feel free to contact us at [email protected].

Salary (per annum) According to the market

Ikano Bank Benefits Annual Social Day for all Employees

Favorable Conditions for Ikano Bank Products

Applications Close Date 30 Jun 2026