Vacant job

Avaron AB is a growing consulting company focused on technology, finance, and operational support. We match your expertise with the most interesting assignments in the market and offer a platform where your development is at the center.

We are looking for a senior IT security specialist for a critical government agency environment. You will be part of a virtual team with colleagues from the IT security and information security organization and work closely with both operations and IT (operations, management, and development). The role is advisory and proactive, focusing on developing and strengthening information and IT security in both existing and upcoming systems.

• Support information classification and translate classification into appropriate protection in IT systems
• Provide support and advice to specialists within the IT organization and to the business
• Improve and document procedures and guidelines within information and IT security
• Manage incidents and cases related to security
• Conduct audits and follow up on security work and measures
• Plan, lead, document, and follow up threat and risk analyses
• Propose and drive initiatives that strengthen preventive security work

• Excellent ability to understand and express yourself in Swedish, both spoken and written
• At least 5 years of experience working with IT/information security within government, municipalities, or regions, or at a larger company (over 100 employees)
• Good experience working with, supporting, leading, and documenting threat and risk analyses
• Experience with cybersecurity frameworks such as NIST CSF, CIS Controls, COBIT, ISO 27001/27002, or similar
• Ability to undergo and pass a security clearance (requires Swedish citizenship, dual citizenship is not accepted)

• Experience in security protection work within government, municipalities, or regions, or at a larger company
• Experience in producing formal documentation within IT/information security, such as strategies, policies, and guidelines
• Experience coordinating, driving, and following up on training initiatives in cybersecurity
• Certifications such as CISSP, CISM, or equivalent
• Certifications such as CISA, CompTIA Security+, or GIAC GSEC (or equivalent)

Our positions may be filled before the application deadline, as we handle applications on an ongoing basis. We therefore recommend that you apply as soon as possible.