Director of Information Security Operations & Standards

Director of Information Security Operations & Standards

Sobi

Stockholm, Sweden

Job Description

About the role:

The Director of Information Security Operations & Standards is responsible for leading and overseeing the technical implementation of security controls, managing security incidents, and ensuring compliance with regulatory requirements such as the NIS 2 Directive/Swedish Cyber Security Act and international guidelines such as ISO 27001 or NIST 2.0.

This role sets and maintains security standards, coordinates closely with the SOC and IT Security teams, and supports the CISO in managing information security risks across the organisation and its third parties.

The role is also responsible for coordinating incident response activities, managing vulnerability remediation, root cause analysis and maintaining threat intelligence and incident registers.

The position is Hybrid and will be located in Stockholm, reporting to Chief Information Security Officer.

Your impact will include:

• Define and maintain technical and organizational security standards aligned with industry best practices and regulatory requirements;
• Oversee implementation of security controls across systems, applications, and infrastructure;
• Coordinate incident response activities, including investigation, containment, and remediation;
• Manage vulnerability assessments and remediation programs;
• Maintain threat intelligence and incident registers to ensure proactive risk management;
• Collaborate with IT Security and SOC teams to ensure effective monitoring and response capabilities;
• Support the CISO in risk assessments, audits, and compliance initiatives;
• Ensure third-party security measures meet organizational standards and contractual obligations.

Qualifications

About you:

You are a confident and pragmatic security leader who combines deep technical expertise with a strong understanding of regulatory and business needs. You are comfortable operating at both strategic and operational levels, able to define standards while also driving their effective implementation.

You thrive in complex, regulated environments and bring a calm, structured approach to incident management and risk mitigation. You are collaborative by nature, working closely with SOC, IT, and business stakeholders to ensure security is embedded across the organisation.

You communicate clearly with both technical and non-technical audiences, can influence decision-making at senior levels, and are motivated by building resilient, compliant, and forward-looking security operations.

Key talents and experience:

• Proven experience in information security leadership roles, preferably in life sciences or regulated industries;
• Strong knowledge of security frameworks (ISO 27001, NIST, CIS) and regulatory requirements (NIS 2, );
• Expertise in incident management, vulnerability management, and threat intelligence;
• Excellent communication and stakeholder management skills.

Don't forget to mention EuroTechJobs when applying.