Vacant job

Are you ready for a bigger challenge? The Swedish Police Authority is Sweden's largest authority with approximately 40,000 employees across the country. With us, you have the opportunity to contribute to the police's mission – to increase safety and reduce crime in society.

The primary task of the IT department is to provide IT services to the entire Police Authority. The IT department is an important part of crime prevention and crime-fighting efforts, and IT is one of the most important tools for streamlining the police and improving the quality of police work. The IT department develops and modernizes the police's IT, and the authority invests heavily in strengthening the department with new specialist expertise and the latest technology for the benefit of citizens and employees in the police operations.

Job Description

The Police Authority is now looking for a SIEM Infrastructure Specialist (Security Information & Event Management) to join one of our teams in the IT Security Section.

The IT Security Section consists of several groups and has national functional responsibility for information and IT security as well as signal protection.

The IT Security Section supports development and management, is responsible for conducting security tests, audits, and follow-ups of IT security. Among the tasks are also process and functional responsibility for identity and access management, security monitoring, incident investigation, etc.

The group consists of IT security analysts and SIEM infrastructure specialists. The main task of the group is to protect all police information and IT systems from both internal and external threats. The group ensures that we develop our platforms in the right direction based on environmental analysis and needs within the authority.

The role of the SIEM Infrastructure Specialist is to maintain and further develop the platforms for collecting and analyzing logs from the entire police IT environment. One of the platforms is used by, for example, the police's SOC (Security Operations Center).

You will work with:

• analyzing new technical opportunities to further develop the platforms
• connecting the police's various IT systems to our central log analysis environment
• being responsible for upgrades and changes in our environment
• designing and developing reports, monitoring rules, and alerts in our log analysis tool, to assist investigations and monitoring within the police
• providing guidance by assisting other departments and system development projects in matters related to logging in police applications, operating systems, database managers, and components

Qualifications

This is an opportunity for you who have:

• several years of experience with SIEM tools and log management (e.g., Elastic, Splunk, ArcSight, or QRadar)
• very good knowledge of IT infrastructure, such as applications, systems, and databases, queue managers, and the operating systems Windows and Linux
• good programming skills in Python, Bash, or Powershell
• very good knowledge of Swedish, both spoken and written
• Swedish citizenship

It is advantageous if you also have:

• experience working as a solutions architect
• experience with log management and log analysis within high-security organizations
• many years of experience in log management within systems, applications, databases, and operating systems
• certification in IT security or information security

Personal Qualities

We are looking for someone who enjoys learning new things and has a constant drive to excel in their profession with a strong focus on delivery. You are attentive and meticulous and care about a good collaborative climate. You share your knowledge, come up with improvement suggestions and ideas, and are unpretentious. You are engaged and driven and enjoy collaborating both within the team and with other teams and operations. We will place great emphasis on personal qualities.

Contact Persons

If you have questions about the assignment, you are welcome to contact the recruiting manager: 0722- 379 377

If you have questions regarding the recruitment process, please contact the responsible HR consultant:

Kimberly Uvelid, kimberly.uvelid@polisen.se

Union Representatives

Police Union, Sofia Ask, phone: 010-563 87 10

SACO, reachable via email saco-s.avdelningarna@polisen.se

SEKO Police, Karna Tillheden, phone: 010-561 66 27

ST, Jessica Stålenkrans 010-563 32 66

Other Information

Employment Type: Permanent employment

Job Title: Officer

Work Location: Stockholm

Working Hours: Flexible working hours

Start Date: By agreement

Function: Technical Specialist

For the full advertisement and how to apply, see the police's website: https://polisen.se/jobb-och-utbildning/lediga-jobb/2025/mars/siem--infrastrukturspecialist/ (https://polisen.se/jobb-och-utbildning/lediga-jobb/2025/mars/siem--infrastrukturspecialist/)