Vacant job

Boverket is the national authority for planning, construction, and housing. We aim to contribute to a sustainable society with good housing in vibrant environments. Our focus areas include the built environment, management of land and water areas, physical planning, construction and management of buildings, housing, and housing finance. Since July 2025, Boverket has also served as a preparedness authority within the preparedness sector for industry, construction, and trade.

Boverket's headquarters is located in Karlskrona, with a smaller office in Malmö. Today, approximately 250 people work at the authority, including architects, civil engineers, economists, lawyers, communicators, planners, and social scientists.

1 position(s).

Your role with us

The IT Department is responsible for acquiring, developing, and managing Boverket's IT infrastructure and IT systems, as well as providing the authority with good IT service. We support operations with secure and efficient IT solutions and currently have a special focus on IT and information security.

As an IT Security Specialist, you have strategic, operational, and technical responsibility for Boverket's IT and cyber security. You work closely with IT operations, system development, IT architects, IT and information security specialists, and the business units. Together with them, you coordinate, develop, and follow up on the authority's IT security work – both strategically and on a daily basis. You translate requirements, risks, and regulations into concrete and appropriate technical solutions in our IT environment.

The role includes, among other things:

• developing and managing Boverket's guidelines and steering documents within IT security
• identifying and analyzing risks, threats, and vulnerabilities, and proposing measures
• designing, implementing, and managing security solutions (e.g., network protection, client and server protection, e-mail/web filtering, encryption)
• working with identity and access management
• participating in incident handling, log management, continuity planning, and follow-up of security work
• contributing to architecture, change, and development work through risk assessments, security requirements, and solution proposals
• leading or participating in security-related projects and action programs
• conducting training and information campaigns to increase security awareness, as well as monitoring the external environment for new threats, requirements, and technologies.

You also collaborate with external organizations and authorities on IT security issues and are a key person in work related to security concerning cloud services, AI, integrations, and other new technical solutions.

Your competence profile

We are looking for you who have several years of experience in practical work with IT security and cyber security, as well as the operation of IT environments with clear security components. You have good knowledge of networks (e.g., TCP/IP and Windows environments) and basic principles of IT security. You have experience reading and analyzing logs, alarms, and vulnerability reports. Furthermore, you have very good ability to communicate in both Swedish and English, both orally and in writing. Fundamentally, you have a post-secondary education in IT, information security, computer science, or otherwise documented equivalent competence as assessed by Boverket.

It is meritorious if you have:

• experience with identity management, access controls, and security architecture
• experience with risk analyses and established risk management methods
• experience with large or complex IT environments, preferably within the public sector
• experience with SIEM, log management, incident handling, SOC work, or vulnerability testing
• knowledge of cloud platforms (e.g., Azure), modern identity solutions, or Microsoft 365
• knowledge of relevant certifications, e.g., CISSP, CISM, CompTIA Security, or equivalent.
• knowledge of relevant frameworks and regulations, e.g., the Cyber Security Act (NIS2), ISO 27001, CIS18, GDPR, and MCF guidelines.

As a person, you are analytical and curious, and keep yourself updated on vulnerabilities, attacks, and new technical solutions. You are meticulous but pragmatic and can make well-balanced assessments between security, operational stability, business benefit, and usability.

You are communicative, team-oriented, and thrive in cross-functional teams. At the same time, you can work independently, take responsibility, and drive issues all the way – from analysis and proposal to implemented solution.

Boverket is an authority that ultimately works on behalf of the citizens. We are looking for you who have respect and humility for the role as a state employee and a great interest in societal issues!

The employment

This position is classified for security clearance, and Swedish citizenship is a requirement for employment. A security clearance check will be conducted in accordance with current security protection legislation prior to the decision on employment.

The position is a permanent employment at the headquarters in Karlskrona, with start date as agreed.

At Boverket's new headquarters, you will have the opportunity to work in a state-of-the-art workplace that promotes activity-based working, community, and a good work environment. At Boverket, there is also the possibility for you as an employee to agree to work remotely up to 49% of working hours, when and provided that the tasks allow it.

Other

To ensure quality and efficiency in the recruitment process, we use an electronic application form in collaboration with Visma Recruit. When applying, your personal data will be handled in accordance with GDPR. By applying, you consent to the handling. Your application is a public document according to the principle of public access and may be disclosed to third parties upon request in accordance with the Public Access to Information and Secrecy Act. The application will be retained by the authority for 2 years after the recruitment has ended (in accordance with the National Archives' regulations on disposal). If you have a protected identity, references, or similar that you consider inappropriate to disclose, please contact the responsible recruiter.

In connection with the recruitment process, Boverket has taken a stance on recruitment channels and marketing. We therefore expressly decline contact with media sellers, recruitment sites, and similar.

Salary form: Monthly salary.
Employment type: Permanent employment.
Duration: Permanent.
Working hours: Daytime.