IT Security & Risk Officer - Gothenburg at Justera Group

, , -

Full Time

Start Date

Immediate

Expiry Date

14 May, 26

Salary

0.0

Posted On

13 Feb, 26

Experience

5 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

Risk Assessment, Threat Modeling, Security Auditing, Cloud Architectures, CIA Principles, ISO 27001, NIS2, CRA, UNECE R155/R156, GDPR, DevSecOps, AWS, Agile Environments, Incident Response, Crisis Management, Digital Forensics

Industry

technology;Information and Internet

Description

About Justera Group Justera Group AB is a leading Swedish IT consulting firm with great experience specializing in building high-performing technology teams and delivering end-to-end IT solutions. Led by dynamic female executives, Justera Group focuses on helping businesses harness the power of digital technologies to continuously evolve in today’s rapidly changing economy. The company has deep expertise in IT consultancy, software development, and recruitment services, providing clients with purpose-driven, well-trained consultants who consistently deliver efficient and effective results. Justera Group manages the entire talent lifecycle, from hiring to ongoing management, ensuring the right fit for each project on time and within budget. With their strong commitment to quality, collaboration, and client success, Justera Group is a trusted partner for technology innovation across Sweden. About the Role: We are looking for a proactive and experienced IT Security & Risk Officer to strengthen cybersecurity, risk management, and compliance capabilities within a complex, cross-functional environment. This role combines strategic development with hands-on execution. The primary objective is to enhance cybersecurity maturity, reduce business risk exposure, and ensure continued delivery of business value through strong governance and secure-by-design principles. Key Responsibilities: Perform and quality assure Threat Analysis and Risk Assessments (TARA) Participate in and support internal and external security audits Contribute to and strengthen operational cybersecurity processes Promote and embed a Security by Design culture across the organization Ensure compliance with relevant regulations and standards, including: ISO 27001 NIS2 UNECE R155/R156 Cyber Resilience Act (CRA) GDPR Apply lean governance principles to balance a strong risk posture with efficient value delivery Collaborate closely with Enterprise Architecture and cross-functional DevSecOps teams Align security requirements with architecture, product development, and operational stakeholders Requirements: Strong background in risk assessment, threat modeling (TARA), and security auditing Solid understanding of reviewing modern cloud architectures from a security perspective Deep knowledge of Confidentiality, Integrity, and Availability (CIA) principles Experience working with regulatory and compliance frameworks such as ISO 27001, NIS2, CRA, UNECE R155/R156, and GDPR Operational cybersecurity experience within an international/global environment Collaborative, relationship-driven personality with the ability to influence and drive continuous improvement Professional proficiency in English Experience with AWS Background in the automotive industry Experience working in agile environments Knowledge of incident response, crisis management, or digital forensics What We Offer: A dynamic and innovative workplace, driving advancements in cutting-edge robotic technologies The opportunity to collaborate with talented cross-functional teams on meaningful and impactful projects Competitive compensation and a comprehensive benefits package A supportive culture that fosters continuous learning, growth, and professional development Flexible hybrid working model for an optimal work-life balance 25 days of annual leave to recharge and relax An annual wellness allowance of 3,500 SEK to support your health and wellbeing

Responsibilities

The primary objective is to enhance cybersecurity maturity, reduce business risk exposure, and ensure continued delivery of business value through strong governance and secure-by-design principles. Key tasks include performing Threat Analysis and Risk Assessments (TARA), supporting security audits, and promoting a Security by Design culture.