Junior / Mid-level GRC / Security Specialist

Assignment description

We are looking for a Junior to Mid-level GRC / Security Specialist to support a NIS2 GAP assessment initiative within Production & Logistics.

This assignment is part of a team delivery. The related roles are published under reference number: 170168, 170171

The role is execution-focused and plays a key part in gathering, structuring, and analyzing information across production units and supporting functions. You will work closely with a Senior Cybersecurity Expert and a Project Manager to ensure high-quality assessment material and actionable outputs. The assignment includes conducting structured interviews and supporting site visits across production units and relevant functions, as well as collaborating with IT, Maintenance, and Logistics stakeholders. You will also support alignment with central NIS2 and ISMS frameworks.

The engagement follows a structured, assessment-driven delivery model and includes performing GAP analyses, consolidating findings into clear documentation, and supporting the development of action plans and manning plans.

Scope of Work

Interviews, Site Visits and Analysis

• Participate in site visits across Sweden, France, The Netherlands, and Poland.
• Conduct and document structured interviews with PRU, IT/OT, Maintenance, and Logistics stakeholders.
• Collect and analyze documentation related to governance, operational resilience, and IT/OT security.
• Identify and document gaps in relation to NIS2 requirements and central ISMS.

Deliverables:

• Structured interview documentation.
• Site-level assessment documentation.
• Documented identified gaps and observations.

Documentation and Consolidation of Findings

• Structure and summarize findings in a consistent and comparable format across sites.
• Support risk-based prioritization of identified gaps.
• Ensure traceability between requirements, findings, and recommendations.
• Contribute to consolidated reporting across countries and functions.

Deliverables:

• Consolidated GAP documentation per site and function.
• Structured summary of findings.
• Input to executive-level reporting.

Support Development of Action and Manning Plans

• Translate identified gaps into draft remediation actions.
• Support development of realistic and phased action plans.
• Contribute to proposals for long-term capability and manning needs.
• Prepare structured documentation to support management decisions.

Deliverables:

• Draft local and regional action plans.
• Documented input to manning and capability plan.
• Supporting documentation for steering forums.

Qualifications:

• Experience within GRC, information security, or compliance-related roles.
• Experience supporting structured assessments or audits.
• Experience conducting interviews and documenting findings.
• Strong analytical and documentation skills.
• Understanding of governance frameworks and security controls.
• Ability to structure complex information clearly and consistently.
• Experience working in multinational environments.

Meriting Experience

• Knowledge of NIS2 or similar regulatory frameworks.
• Experience from industrial or manufacturing environments.
• Understanding of IT/OT security environments.
• Experience working with ISMS or operational resilience initiatives.

You have a structured and detail-oriented working style with strong analytical skills. You communicate clearly in writing and are comfortable working in cross-functional and multinational environments. You are proactive and solution-oriented, with a strong focus on quality in both documentation and analysis.

Detaljer

Referens: 170167

Geografisk placering: Remote within EU

Omfattning:100%

Startdatum:2026-03-09

Slutdatum:2026-07-10

Ansök senast:2026-03-02

Publiceringsdatum:2026-02-25

Konsultförmedlare

Christoffer Svensson