Cyber Security Analyst
Description
Role: Ensure the governance structure and security steering documents are accessible, clearly understood, and adopted across all levels of the organization.
Conduct and oversee comprehensive cyber risk assessments at both enterprise and
operational levels; maintain and regularly update central risk registers enabling risk informed decision-making.
Develop audit and control testing schedules, and ensure systematic evaluation of compliance levels and control effectiveness.
Drive a culture of continuous improvement by identifying and introducing more effective and efficient controls and processes across the cyber security domain.
Collaborate regularly with internal departments and external stakeholders, including third-party vendors, to manage cyber security risks and ensure alignment with internal standards and contractual obligations.
Act as a visible ambassador for cyber security, making complex security topics
understandable and accessible to all employees.
Essential requirements: • Typically, 5+ years in cyber security in a global enterprise
• Typically, 3+ years in governance, risk management and compliance
• Applicable educational background within GRC and/or information and cyber security (e.g. a university degree or a diploma from a higher vocational education) or equivalent work experience
• Good knowledge of regulatory compliance - preferable on a global market
• Good knowledge of cyber security best practises, standards and maturity models (e.g. ISO 27001, ISO 31000, ISO 22301, NIST CSF, C2M2)
• Proven track record in risk management and in reporting for global enterprises
• Experience deg, implementing and governing cyber security frameworks
• Experience working with auditors and QSA's in security assessments and certification processes
• Strong communication and collaboration skills in English
• Proven skills in change management
• Experience from driving security awareness activities and building security culture
• CISM, CISSP, CCISO or equivalent certification in information and cyber security
• ISO 27001 Certification (e.g. as Lead Implementor or Lead Auditor
Please explain how you meet all the requirements when applying.
Utilization: 100**%** **Location:**Stockholm Period: XXX-XXX-XXXX-XXX-XXX-XXXX Last day to apply: XXX-XXX-XXXX We present regularly. This means that we sometimes remove the assignements from our website before the final application deadline. If you are interested in an assignement, we recommend that you submit your application as soon as possible.