Senior Security Officer (Information Security)

Job ID: 23744 

Would you like to play a key role in ensuring that Nordea is protected against cyber threats? We are now looking for a person with strong Information Security assessment, management reporting skills and capabilities to present complex topics to a non-technical audience. You will become a member of the Security Strategy & Change Oversight (SSCO) team, which is reporting to the Head of the Chief Security Office (CSO).

At Nordea, we’re committed to being a trusted partner for our customers and society. Compliance and integrity go hand in hand. Joining us means you’ll have a significant impact on how we manage information and technology security risk within the Nordea Group.

So, bring your skills, ideas and unique background. With us, you’ll find plenty of opportunities to collaborate, grow and make your mark on something bigger. 

About this opportunity

Welcome to the SSCO team within CSO. The CSO is part of Group Risk in the second line of defense. We provide Security Strategic direction and oversight on changes connected to Information Security initiatives.

We add value to Nordea and to our customers by managing the Information Security risks and enabling managers and employees to act correctly in protecting the confidentiality, integrity and availability of information. We do that in strong collaboration with Business Areas and Group Functions. The unit supports the entire Nordea Group.

You will play a valuable role in the development, monitoring and assessment of Information Security key initiatives and provide security strategic direction with relevant and accurate risk management activities to keep Nordea within risk appetite. Through your work you will get a unique opportunity to contribute and learn about Information security risk management framework and security strategy in the bank.

What you’ll be doing:

• Review and update the established security strategy for the organization;
• Provide assessment on Information Security change initiatives;
• Contribute in monitoring and controlling of Nordea risk frameworks and provide general advice across the organization;
• Define, build and help to implement a robust reporting structure with focus on Key Risk Indicators; and
• Interact with other teams across all three lines of defense to help mature risk awareness.

You will join a team of highly skilled, dedicated and experienced Information Security professionals. In this role, you will have a chance to gain a broad network across the bank.
 

Who you are

Collaboration. Ownership. Passion. Courage. These are the values that guide us in being at our best – and that we would like you to share with us.  

To succeed in this role, we believe that you:

• Have a solid understanding of Information Security and/or Risk Management processes including industry practices within Information Security;  
• Are a proactive, independent and pragmatic team-player with a solution-oriented mindset;
• Can communicate in a constructive manner with all levels of the organization;
• Are structured, analytical and have a high ability to provide timely and accurate Information Security reporting; and
• Can focus on information value and make complex data understandable for a non-technical audience.

Your experience and background:  

• High ambition level to develop and self-motivate to help improve deliveries and adapt to transformation
• Min. relevant bachelor's degree in IT
• Preferably certified in Information Security proven credentials such as CISSP or CISM
• Minimum 5 years of experience in Information Security domain
• Experience working with Information Security standards like ISO 27001 or NIST CSF
• You have superior English spoken & written skills.

If this sounds like you, get in touch!

Next steps

Submit your application no later than 12/05/2024. For more information, you’re welcome to contact Head of Security Strategy & Change Oversight, Irfan Hussain at irfan.hussain@nordea.com.

At Nordea, we know that an inclusive workplace is a sustainable workplace. We deeply believe that our diverse backgrounds, experiences, characteristics and traits make us better at serving customers and communities. So please come as you are.

Please be aware that any applications or CVs coming through email or direct messages will not be accepted or considered.

For candidates in Poland only - Please include permit for processing personal data in CV as following:

In accordance with art. 6 (1) a and b. Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) hereinafter ‘GDPR’. I agree to have: my personal data, education and employment history proceeded for the purposes of current and future recruitment processes in Nordea Bank Abp.

The administrator of your personal data is: Nordea Bank Abp operating in Poland through its Branch, address: Aleja Edwarda Rydza Śmiglego 20, 93-281 Łodź. Your personal data will be processed for the recruitment processes in Nordea Bank Abp. You have a right to access your personal data, right to rectify and right to delete. Disclosing the personal data in the scope specified by the provisions of Polish Labour Code from 26 June 1974 and executive acts are mandatory. Providing personal data is necessary to conduct the recruitment processes. The request for the deletion of your personal data means resignation from further participation in recruitment processes and causes the immediate removal of your application. Detailed information concerning processing of your personal data can be found at: nordea.com/en/doc/nordea-privacy-policy-for-applicants.pdf

We reserve the right to reply only to selected applications.