Information Security Specialist at Almi

We are looking for an Information Security Specialist for our client Almi. This position is a direct recruitment with a 6-month probationary period and start as soon as possible.

Almi supports small and medium-sized enterprises in all sectors throughout Sweden to develop and grow sustainably. Through loans, venture capital, and business development, we provide more companies with the potential to realize their ideas – whether they are in the startup phase or established companies with growth ambitions.

About the Role:

As an Information Security Specialist at Almi, you will play a crucial role in the company's security function. In this position, you will be responsible for the implementation, maintenance, and further development of key processes related to the organization's Information Security Management System (ISMS). Your tasks will include managing third-party risks, training employees in information security, and participating in the drafting and development of governance documents and processes within ISMS. Furthermore, opportunities for professional development in complementary security areas, such as crisis preparedness and related domains, will be offered.

The role does not have formal personnel responsibility, but you contribute to ensuring that security work is conducted in a structured manner and with high quality.

Main Responsibilities:

• Conduct third-party and vendor reviews during purchases and procurements, including risk assessments and ongoing follow-up.
• Plan and execute activities within the company's security awareness program, including training initiatives and communication.
• Participate in the development, management, and improvement of governance documents, manuals, guidelines, and other parts of ISMS.
• Monitor compliance with policies, controls, and processes within ISMS and contribute to continuous improvements.
• Participate in incident management through initial analysis, information gathering, action coordination, and documentation.
• Conduct risk analyses related to systems, vendors, processes, and business changes.
• Provide administrative support within the Security function regarding exercises, controls, and follow-up.
• Monitor and analyze new threats, vulnerabilities, and regulatory changes in information security and propose relevant actions.

Qualifications:

Mandatory:

• Relevant university or college education in IT, information security, computer science, or a related field, or other post-secondary education with documented experience deemed equivalent.
• At least 2–4 years of experience in operational information security work, including work with policies, controls, and ISMS components.
• At least 1–2 years of experience in risk analyses from an information security perspective, including third-party and vendor risks.
• At least 1–2 years of experience in awareness activities or training initiatives related to security.
• At least 1–2 years of experience in participating in incident management.
• Basic knowledge of established security standards such as ISO/IEC 27001, NIST, or equivalent.
• Very good knowledge of Swedish and English, both spoken and written.

Desirable:

• Experience working in organizations with ISO/IEC 27001 or another formal ISMS.
• Experience in procurement, purchasing, or vendor management.
• Certifications such as Security+, CCSK, ISO 27001 Lead Implementer/Auditor, or similar.
• Experience developing training materials or communication support within security.
• Experience in risk management methodology.
• Experience in audit assignments or internal audits in information security, risk, or quality.

Personal Qualities:

To thrive at Almi and succeed in the role, you need to be:

• Structured and meticulous with the ability to work methodically and follow up on processes.
• Communicative and pedagogical, with the ability to adapt messages to both technical and non-technical target groups.
• Independent, responsible, and proactive.
• Collaborative and pragmatic in dialogue with internal and external stakeholders.
• Strong analytical skills with the ability to identify risks, suggest improvements, and translate requirements into practical work.
• High integrity and the ability to handle confidential information.

Working at Almi:

At Almi, competence, social engagement, and business acumen are important driving forces. There is a strong common interest – to see more growing and successful companies in Sweden. To thrive at Almi, you are therefore motivated to work with your colleagues for the success of others and for sustainable business practices. The work environment is characterized by joy and great engagement, where we value the courage to think differently.

At Almi, we value diversity, and we actively promote diversity both internally and externally, believing that employees' different backgrounds, experiences, knowledge, and personalities enrich the organization. In recruitment contexts, the focus on diversity based on gender, age, and foreign background is a given.

If you want a mission that makes an impact, a job that engages, and all this in a workplace that inspires - come to Almi!

A background check will be conducted on the final candidate upon hiring.

Does this sound interesting?

If you think this sounds like the right opportunity for you, do not hesitate to submit your application today.