Information Security & Privacy Expert

We are looking for an Information security and privacy expert, who’s a do’er, to join our Standards & Governance department.

Are you strong with controls, methods, and processes for data protection? And do you thrive with implementing and facilitating?

This could be interesting to you?

About the role

IST provides SaaS solutions to the public sectors in Sweden, Norway, Denmark, and Germany why compliance in our roles as data processor as well as controller is important to our business

As an Information Security & Privacy Expert your primary focus will be to collaborate with the organization to raise the level of information security and privacy within IST.

Other tasks where we need your expertise:

- Information security aspects of data protection & privacy
- Implement sound and adequate data protection processes based on collaboration with our external DPO
- Define necessary and effective control framework for information security and privacy.
- Implement our new model for Risk Management
- Plan and conduct Internal audits
- Design awareness campaigns and internal training
- Reporting to CCO on the effectiveness of controls


Our primary tool is our ISTMS (IST Management System) based on Jira and Confluence (Refined wiki) and one of your responsibilities will be to manage and improve our ISTMS. The management system is certified according to ISO 9001 Quality for the entire group, a smaller scope of ISO 27001 and very soon ISO 14001 (Sustainability). With more certifications to come in the following years.

You will be part of a highly skilled team of experts in the fields of information security, data protection and sustainability. Standards & Governance is part of our Corporate Service department that provides support to the business regions and units (including HR, Corp. IT, Finance, Communication). S&G are responsible for the ISTMS (IST Management system) that support our managers with the processes and tools for driving IST to succeed in our goals and business plans. You will report to the Chief Compliance Officer (Head of S&G), who reports to the Senior Management.

About you

For you to be a good match for this role, you probably have previous expert level experience from similar roles. You know your GDPR (and supplemental national privacy legislation) are well acquainted with the ISO Standards 27000 series and 9001. Practical experience with implementing and auditing controls and processes will be most valued.

As a person, we believe that you are a team player with great communication skills. You have a structured and well-organized way of working, also during more busy times. You have the ability to “self-start” and be self-going and you find pride in a job well done.

You will be part of a Scandinavian team where our Corporate language is English. The role will include some days of travel.

For this role, you can either be placed in Växjö, Sweden or Roskilde, Denmark.

About us

More than 5 million users. 400 co-workers and 9 offices. From Boden in northern Sweden to Schmalkalden in central Germany. We are the leading EdTech company in Scandinavia!

Together with our users we develop digital solutions for a better way of learning. We combine technical competences with work experience from schools to change the world. Do you also want to make a difference? Welcome!

Apply

If this sounds like the right challenge for you (how could it not?), make sure to apply as soon as possible at https://career.ist.com/. Apply before 30th of April - but don’t wait, applications are processed continuously. If you have any questions, don’t hesitate to send us an e-mail or give us a call.

For more information, get in contact with recruiting manager Niels Höjgaard Nielsen, Chief Compliance Officer, at niels.hojgaard@ist.com or HR Business Partner Hanna Kullsten, at hanna.kullsten@ist.com.

We’re looking forward to hearing from you!