Vacant job

Company Description

Vattenfall is one of Europe's largest producers and retailers of electricity and heat. Our main markets are Sweden, Germany, the Netherlands, Denmark, and the United Kingdom. Within the Vattenfall Group, there are approximately 21,000 employees. We have electrified industries, delivered energy to homes, and transformed lives through innovation for over a hundred years.

About the Role

IT security is becoming increasingly important within Vattenfall. Our highly secured assets are spread across several European countries, and the rapidly evolving digitalization, cyber threats, and local security regulations make our work both challenging and interesting to be a part of. Red IT Security and Monitoring Services currently drives and delivers SOC services to Vattenfall's internal operations that conduct IT operations. We value your important work in IT security and hope that you want to come and further develop this together with us.

Your Responsibilities

As a Senior IT Security Officer, you will work in a Swedish team focused on IT security and take an active role in the continuous development of our SOC services and capabilities within the team, which also includes daily operations and maintenance of our IT security tools. Additionally, we monitor and analyze security information to secure all levels within the organization. You will also collaborate with various stakeholders within the Vattenfall Group and with different stakeholders in the work to further strengthen the capacity and capability in the IT security area.

You will do this by:

• Taking responsibility for and having an active role in the infrastructure work around our SIEM environment, which includes daily operations, maintenance, and upgrades of our SIEM and EDR solutions,
• Ensuring and working with data quality and continuously monitoring it,
• Being involved in and driving the work of onboarding additional data and security logs,
• Identifying, analyzing, and managing incidents and coordinating with other stakeholders to contain, remediate, and recover after an incident may have occurred,
• Writing technical reports that describe how evidence has been identified and all steps taken during the incident investigation
• Maintaining and updating our dashboards,
• Being involved in the development of detection rules,
• Providing guidance to the business regarding action and response plans during events and incidents,

Requirements

We are looking for an experienced and ambitious person who is not afraid to ask questions and who constantly strives for improvement. In addition to what has already been described above, we see that you have:

• Very good experience working in operations and/or SIEM,
• A proactive and driving work approach and a good ability to take initiative,
• Team spirit! We work in teams, and it is important that you feel comfortable in this role as collaboration in the team is a vital component,
• Experience in analyzing attack activities such as network mapping/scanning, DDoS attacks, and/or malware
• Practical experience in Incident Response

Furthermore, we would like you to have:

• Experience in assessing vulnerabilities, threats, and security incidents,
• Experience and good habits working with security scanners, monitoring in SIEM solutions, and incident management,
• Experience in coordinating actions to remediate identified deficiencies in IT environments,
• Good collaboration skills and the ability to interact with employees at all levels in the organization,
• Experience in security architecture for systems and various security solutions,
• Experience working with Endpoint Detection and Response tools (EDR) as well as Intrusion Detection System or Intrusion Prevention System (IDS/IPS),
• Very good experience with various operating systems, especially Windows and Linux,
• Strong analytical skills and the ability to solve complex problems in the cybersecurity field.
• Very good written and verbal communication skills in both Swedish and English
• It is a plus to have experience with Kubernetes

Additional Information

We Offer

• We offer a challenging and international work environment and the opportunity to work with some of the best in the field.
• You will work in interdisciplinary teams, and you can always count on support from engaged colleagues
• A professional environment where your business intelligence knowledge and attitude will take us a step further.
• Additionally, a healthy work-life balance
• At Vattenfall, you will have the opportunity to work for a company in clean energy that aims to create fossil-free energy within a generation,
• And last but not least; an international and multicultural work environment with energetic, motivated colleagues who also like to have fun!

In addition to being part of shaping the future's smart energy society, we offer you a developing and varied job with many contact points. For us at Vattenfall, it is important that work and private life have a good balance, which is why we offer flexibility in work and the possibility to work from home when needed. We also have a number of other employee benefits such as reduced working hours, favorable pension agreements, parental leave supplements, and more. Read more about our benefits here.

This position is primarily intended for internal candidates within Vattenfall. In the case of equal qualifications, preference will be given to colleagues from Business Unit IT (YI). We value internal development and encourage you to apply.

Location

Stockholm, Solna. Forsmark, Ringhals

For more information about the position itself, please contact the recruiting manager Joel Franzén, [email protected]. For more information about the process, please contact Recruiter Julia Norberg, [email protected]

Union representatives via Vattenfall's switchboard, 08 739 50 00. Sofi Wadström (Akademikerna), Patricia Ek (Unionen), Christer Gustafsson (Ledarna), Juha Siipilehto (SEKO)

Welcome with your application by 2026-03-01. Selection and interviews will take place after the application deadline. We only accept applications via our website. We do not accept cover letters in the application. You can apply quickly and easily by answering selection questions and attaching your CV.

At Vattenfall, we value being active, positive, open, and security-conscious. We are looking for employees who share our vision and can contribute to strengthening our corporate culture. We are convinced that diversity contributes to building a more profitable and appealing company and strive to be good role models in terms of diversity.