OBS! Ansökningsperioden för denna annonsen har
passerat.
Arbetsbeskrivning
Epiroc is a leading productivity partner for the mining, infrastructure and natural resources industries. With
cutting-edge technology, Epiroc develops and produces innovative drill rigs, rock excavation and construction
equipment, and provides world-class service and consumables. The company was founded in Stockholm,
Sweden, and has passionate people supporting and collaborating with customers in more than 150 countries.
Learn more at www.epirocgroup.com.
Epiroc has created a new Information Security function that will develop and improve the information security within Epiroc. This is a great opportunity to be part of building a function and creating new ways of working – not just administering existing structures.
Join our team
As an Information Security Specialist, you will be part of the central Information Security organization with the objective of supporting the whole Epiroc organization and to reduce risk and security exposures across the Epiroc Group. You will report to the Head of Information Security.
Your mission
The mission for the role as an Information Security Specialist is to understand the threat landscape, improve the effectiveness of Epiroc's Cyber Security Program and protect business assets. To identify Information Security risks and required mitigating activities. Raising awareness and educating employees and business partners to improve activities related to cyber risk management.
As our Information Security Specialist, you will:
* Participate in risk assessments to reduce risk and security exposure for Epiroc
* Participate in the planning of information security risk assessments to examine and verify security capabilities and controls related to Epiroc’s information assets
* Communicate risk assessment findings and provide risk remediation guidance to key stakeholders
* Identify opportunities to improve risk posture and give advice for risk mitigation
* Develop and maintain risk management standards, processes and templates.
* Participate in developing the Information Security Management System (ISMS)
* Participate in developing and delivering Security Awareness Training
* Participate in developing and delivering Supply Chain security assessments
* Manage information security projects
* Assist in M&A Activities to evaluate information security requirements
* Participate in improving Information Ownership & Classification
* Assist in developing intellectual property Asset Management
* Supporting the business in creating Business Impact Analyses
* Business Continuity support
* Participate in improving our Threat Intelligence and in monitoring & reporting information security KPIs
* Liaise with the IT Security team
Your profile
For this role we would like to see that you have a Bachelor's Degree in Business Information Systems, Cybersecurity, Computer Science, or a related field. Or if you have equivalent work experience.
You have at least 3-5 years’ experience in the field. High level of both verbal and written English. Additional languages are a plus
Knowledge of regulatory compliance, including information security management frameworks (e.g., ISF Standard of Good Practice, NIST CSF, ISO2700x, SANS Top 20 Critical Security Controls, SOX, COBIT), is preferred.
Security certifications such as CISSP, CISA or CISM is a plus
As for your personal skills we are looking for someone who has great communication and presentation skills. You have the ability to translate technical language into business terms, work independently, establish plans, report status and deliver according to plan. You also have a great business understanding together with analytical skills.
Location and travel
Location is depending on the candidate, preferably Stockholm or Örebro in Sweden. Global travel may occur.
In case a candidate from a different country applies and is successful, Swedish local terms and conditions will apply
Life at Epiroc
By joining our team, you can expect an atmosphere of creativity, innovation, and workplace diversity. You will be a part of a group of skilled, dedicated, and helpful colleagues who live by our core values: Collaboration, Commitment, and Innovation. We work in a global environment with over 113 different nationalities!
In addition to the fact that we have a culture that is characterized by development combined with having a good balance between work and leisure, there are some things that makes us a little extra proud to work at Epiroc:
* Global career opportunities
* Epiroc University, for your own competence development
* Community involvement
* Benefits package, which amongst other things include flexible working hours and bonus.