Threat Intelligence Officer

We, at Enterprise IT Security, are on a mission to secure the IT journey for the Volvo Group. We work closely together with stakeholders across several Business Areas (BAs), Truck Divisions (TDs), and Group Functions (GFs). While the BAs are responsible for driving the business, the TDs provide research, development, purchasing, manufacturing and assembly. Within Volvo Group, the GFs own the Group agenda, provide strategic direction and have global responsibility in group-wide functions such as IT, legal, compliance and security.

With Enterprise IT Security, you will be part of Group Digital & IT (Group Function). A global and diverse team of highly skilled professionals who work with passion, trust each other and embrace change to stay ahead. Enterprise IT Security works in close collaboration with both Group Security function and security functions within TD’s, BAs and GFs. Together we work to build a security posture that is best in class.


Role Description
The Threat Intelligence Officer identifies IT/OT security related threat actors groups, studies their attack methods, suggests relevant mitigation measures and evaluates broader cyber threat trends.
Implementation of a MITRE ATT&CK based approach to gather, assess and share tactical and strategic threat intelligence
Establish and constant monitor open source and paid intelligence services on IT/OT security threats
Provide regular reports on tactical and strategic threat intelligence to technical and non-technical stakeholders and senior managers
Closely interact with operational teams (e.g. threat hunting) and cyber risk managers to support a holistic understand of threat actors, their objectives and targets, their TTPs, their interest in different Volvo Group assets and their ability to perform relevant attack types
Development and implementation of a triage process to identify critical and time-sensitive threats
Alignment and collaboration with technical teams (e.g. SOC or SIRT) and business representatives on the development of a group-wide framework for tactical and strategic cyber threat intelligence
Report on effectiveness of the established procedures and the residual risks
Design of additional compensating controls or mitigating actions to further reduce the identified threats (e.g. change of security baselines, architectural adjustments, procedural changes, improvement of detection capabilities)



Critical Competencies
Good communication, presentation and organization skills
Excellent writing skills
Process design, KPI development and risk management
Deep understanding and practical experience with MITRE ATT&CK and other threat management frameworks
Ability to establish and maintain good relations and trust with your internal and external partners/stakeholders
Must be able to identify and resolve complex problems in a structured way
Willingness to learn, know and understand Volvo Group security policies, directives and requirements



Minimum Education and Experience
Bachelor or Masters Degree in Information Technology, Information Systems, Engineering, a related field or equivalent work experience
5+ years experience in IT Operations, Security & Development
Domain specific certifications (e.g. ethical hacking, forensic investigations, ITIL) would be an advantage



Kindly note that due to GDPR, we will not accept applications via mail. Please use our career site.