Information Security Specialists at SMHI

Do you want to play a key role in protecting and developing information security at one of Sweden's most vital authorities? SMHI is now looking for two engaged and strategic information security specialists who want to work with and develop the authority's efforts in information security.

Information security is about protecting information from unauthorized access, ensuring it is always available when needed, ensuring that only the right people can access it, and preventing risks that may threaten the security of the information. It is thus a combination of protection, availability, control, and risk management to keep information secure and reliable.

With an increased focus on information security and security protection due to SMHI's role as a preparedness authority and Sweden's NATO membership, it is crucial that we adapt our measures to meet the threats and challenges that may be directed at our vital operations.

We need to adapt and develop our security measures to protect SMHI's information assets. We focus on identifying potential threats, improving our incident preparedness, and strengthening our routines for information security. By continuously following up and adapting our security strategies, we ensure that SMHI meets the national and international security requirements placed on us as a preparedness authority. Through this work, we aim to secure SMHI's ability to continue delivering vital services, even in times of heightened security risks.

These positions are located at the Security and Preparedness unit within the Management and Operational Support department. The department gathers functions that work with management and support for all of SMHI's operations, with the ambition to provide effective, clear, and organization-wide support – both internally and externally.

About the position

You will have a central role in SMHI's work with information security. You and your colleague will jointly be responsible for leading and coordinating the authority's strategic and operational efforts to ensure that information is handled correctly, in accordance with legal requirements and the needs of the operations. You will work proactively to analyze, identify, and implement security measures while contributing to strengthening a security-conscious culture within the organization.

Your main tasks include:

• Leading and developing SMHI's systematic information security work.
• Coordinating strategic and operational efforts within information security.
• Conducting risk and vulnerability analyses and ensuring compliance with legal requirements.
• Collaborating with other authorities, security actors, and external partners.
• Developing and supporting the organization in adapting to changing requirements and including a total defense perspective.
• Conducting training and exercises to strengthen the security culture within SMHI.
• Participating in SMHI's signal protection organization.
• Designing and implementing guidelines, routines, and security regulations.
• Working closely with the IT security organization and other key stakeholders.

About you

We are looking for someone who is a strategic and self-driven individual with strong analytical skills. You have a high security awareness and integrity, and can balance operational and strategic perspectives. Since the role involves handling classified information, it is of utmost importance that you have a good understanding of security protection and the ability to work responsibly within these frameworks. You are clear in your communication, have good collaboration skills, and can translate complex requirements into concrete actions. Additionally, you have the endurance and drive to see projects through to completion.

Requirements:

• Post-secondary education in fields such as systems science, computer science, or law, or equivalent experience as assessed by SMHI.
• Several years of work experience in information security.
• Very good ability to express yourself in Swedish, both spoken and written.
• Good knowledge of English.
• Basic IT skills, good knowledge of MS Office.

Meritorious:

• Education in information security.
• Certifications such as CISM or CISSP.
• Knowledge of NIS 2, CER, and the Cybersecurity Act.
• Experience from the public sector, security protection work, and/or IT security.
• Experience in planning, leading, and driving work from start to finish.
• Experience in audit work.
• Experience with software related to IT security.

Employment type: Permanent employment

Location: Norrköping, but includes security work for SMHI's operations throughout the country.

Application deadline: February 17, 2026

Read more about SMHI as an employer and about our offerings here.

SMHI is a Swedish expert authority with a global perspective and a vital task in forecasting changes in weather, water, and climate. Based on scientific grounds and through knowledge, research, and services, we contribute to increasing the sustainability of society as a whole. Every day, around the clock, all year round.

SMHI is a preparedness authority, and as an employee, you may be assigned to the authority in times of war.

The employment may involve placement in a security class. Approved security clearance with background check according to the Security Protection Act (2018:585) is a prerequisite for employment and may require Swedish citizenship.

Keep in mind that the documents and information you send to SMHI through your application become a public document. This means that all material in the application, including attachments, may need to be disclosed to anyone who requests it unless the information is covered by confidentiality according to the Public Access to Information and Secrecy Act. Be mindful to primarily write what you consider relevant in relation to the requirements of the position. Consider your privacy and avoid providing information that contains sensitive personal data, information about your or your close relatives' health, political opinions, or religious beliefs.