Expert IT Security & Risk Officer

About The Position

Requirements

• Technical Expertise: Strong background in risk assessment, TARA, and security auditing.
• Security Principles: Deep understanding of how to apply security best practices to meet CIA (Confidentiality, Integrity, and Availability) requirements.
• Architectural Vision: Proven ability to review cloud services and modern architectures through a security lens.
• Regulatory Knowledge: Expert experience with ISO 27001, NIS2, and UNECE R155/R156 (Automotive Cyber Security Management Systems).
• Operational Experience: Extensive experience in operational cybersecurity within a global context.
• Soft Skills: A relationship-driven collaborator who takes initiative, motivates peers, and thrives on continuous improvement.
• Language: Professional proficiency in English.

Nice To Haves

• Cloud: Hands-on experience with AWS (Amazon Web Services).
• Industry: Prior experience in the Automotive sector.
• Methodology: Background in Agile working environments.
• Specialized Skills: Proficiency in incident response, crisis management, or digital forensics.

Responsibilities

• Risk Management: Lead and quality assure Threat Analysis and Risk Assessments (TARA) to identify and mitigate vulnerabilities.
• Compliance & Standards: Ensure organizational alignment with international standards and regulations, including ISO 27001, NIS2, GDPR, CRA, and UNECE R155/R156.
• Security Architecture: Review modern cloud services from a security perspective and drive a Security by Design culture across the organization.
• Audit & Governance: Support security audits and apply Lean Governance principles to improve operational efficiency without compromising the risk posture.
• Collaboration: Act as a liaison between Enterprise Architecture, cross-functional DevSecOps teams, product development, and operational stakeholders.
• Operational Security: Support day-to-day cybersecurity processes in a complex, global environment.