OBS! Ansökningsperioden för denna annonsen har
passerat.
Arbetsbeskrivning
Enterprise IT Security –Security Baseline Governance Officer
We, at Enterprise IT Security, are on a mission to secure the IT journey for the Volvo Group. We work closely together with stakeholders across several Business Areas (BAs), Truck Divisions (TDs), and Group Functions (GFs). While the BAs are responsible for driving the business, the TDs provide research, development, manufacturing and assembly. Within Volvo Group, the GFs own the Group agenda, provide strategic direction and have global responsibility.
With Enterprise IT Security you will be part of Group Digital & IT (Group Function). A global and diverse team of highly skilled professionals who work with passion, trust each other and embrace change to stay ahead.
Role Description:
Security Baseline governance officer acts as a key contact who make sure that relevant security and compliance baselines are in place for entire IT landscape. Oversees implementation and effectiveness of security baselines.
In your role you will be responsible for:
tailoring and maintaining the desired security baseline structure & governance-related processes anchored to Volvo Group D&IT security best practice catalogue,
monitoring of implementation (including exemption handling) of agreed security baselines and quality assurance of its outcome,
ensuring fine-tuning of security baselines in a way to fit Volvo Group specific IT landscape,
contributing to reporting function and its execution within security baselines creation, implementation and risk mitigation processes,
cooperation with critical Volvo Group D&IT departments and external suppliers,
negotiating with IT delivery units the definition of security baselines according to the agreed structure and timeline.
Critical Competencies:
Experience in translating agnostic security requirements onto technical vendor-specific security baselines assigned to particular IT components (software, infrastructure),
Proven knowledge of one or more well-known cyber-security frameworks (like ISF, NIST, SCF, ISO 27x, OWASP, CISA, etc.),
Excellent communication, presentation and organization skills,
Ability to establish and maintain good relations with your internal and external partners/stakeholders,
Must be able to identify and resolve problems in a timely manner,
At least 5 years of experience in leadership position.
Minimum Education and Experience:
Bachelor or Master’s Degree in Information Technology, Information Systems, Engineering, a related field or equivalent work experience,
10+ years experience in IT Operations, Security & Development.
Kindly note that due to GDPR, we will not accept applications via mail. Please use our career site.