Information Security Officer with focus on risk in Security Governance

Would you like to help Group Security & Cyber Defence (GSCD) achieve its ambition of managing and improving SEB security governance, security resilience and promoting security awareness & culture? GSCD's main objective is to enable secure and resilient business operations by defining and overseeing the implementation, adoption and effectiveness of the information security management system, security instructions and controls. Are you passionate about security risk management, overseeing and managing all aspects of security risks? We are now looking for an Information Security Officer with focus on risk in Security Governance at SEB in Stockholm.

About the Role

As one of our Information Security experts, you will play a vital role in ensuring SEB's security posture aligns with both business goals and regulatory requirements. Your focus will be on managing and overseeing information security risks, with a strong interest in leveraging new technologies like AI and automation to enhance efficiency and resilience.

Working as part of the Security Governance team, you will collaborate with skilled professionals across SEB to define, implement, and evaluate security strategies, guidelines, and frameworks. You will also engage with various stakeholders to ensure a holistic and forward-looking approach to security.

Your responsibilities will include:

1. Driving security and operational efficiency through SEB's way of working.
2. Establishing and implementing a risk-based approach to information security management.
3. Developing and maintaining security-related instructions, guidelines, and controls.
4. Identifying risk scenarios and tolerance levels to continuously assess SEB's security posture.
5. Ensuring compliance with regulatory requirements and frameworks.
6. Collaborating with internal teams, such as business divisions, technology, risk, and compliance, to enhance SEB's overall security governance.

Who we are looking for:

We believe you are a highly motivated, communicative, and analytical team player with a passion for problem-solving and innovation. You possess technical expertise, a hands-on mindset, and the ability to take a strategic and holistic view of security. Integrity and a strong ethical foundation are key to ensuring SEB's and our customers' trust.

As an ideal candidate, you should have:

1. A bachelor's or master's degree in computer science, information security, or a related field.
2. 8+ years of experience in security audit, risk management, or related roles.
3. Familiarity with security frameworks and standards, such as ISO 27001/2, NIST, FAIR, CIS 18, PCI-DSS, and regulatory requirements (e.g., NIS2, DORA, FI FFFS).
4. Relevant certifications, such as CISA, CISSP, CISM, or CRISC, are considered an advantage.
5. Hands-on experience with tools and technologies, such as M365, Power Automate, Power BI, Jira, and Tableau.
6. Curiosity and capability to leverage AI and automation to drive operational efficiency.

What we offer:

1. An inclusive and dynamic workplace where employees feel valued and respected.
2. An excellent opportunity to work with some of the best specialists in the industry and to develop your career in a collaborative and innovative environment.
3. A friendly and welcoming culture.
4. Attractive compensation and benefits.
5. Opportunities to work with cutting-edge technologies in security and automation.
6. Challenging and meaningful work with a focus on personal growth.

Ready to Join?

Attach your CV and a personal letter describing yourself and how you can contribute to SEB. Since we select candidates on a rolling basis, feel free to send in your application today, but no later than 2025-01-24. If you have questions about the position, please contact Christine Dovander, Head of Security Governance, by email at christine.dovander@seb.se.

Learn more about working at SEB: www.sebgroup.com/career

It is our fundamental belief that inclusion and diversity are crucial for our future success. We strive to have an inclusive, value-driven culture where employees feel valued, respected, and involved irrespective of who they are, what they believe, or where they come from.