Information Security Controller

Do you want to work internally at one of Sweden’s biggest Audit- and Consultancy firms in the field of IT-governance? Do you want to be involved in all questions regarding Information Technology security and contribute to enhancing KPMG’s security stance? This is a new position for us, and an essential function for our business. If you work within IT Audit, Information Risk Management, or cyber security today, and want to take the next step in your carrier and develop in an internal function? Then this is for you!
About us
Our internal Quality & Risk Management function is crucial for KPMG. We perform quality and risk controls and our National Information Technology Security Officer is now looking for a new collaborator. Together, the two of you will be responsible for all Information Security questions and produce Information Security assessment reports on Technology Solutions. Do you wish to develop your expertise within the field of information security and IT governance? Then you will enjoy working with us. We are a team of 15 highly skilled colleagues with different seniority, backgrounds and expertise working with Ethics and independence, Risk Management, Internal Audit, KYC and our System of Quality Management.
Your role with us
We are looking for an individual who wants to work in a challenging, international and dynamic environment that is characterized by change and increased demands. You will, for example, work with the security of client engagement, information security policies, security aspects of project management and software development. You will carry out cyber security maturity assessments and appraisal of the effectiveness of compliance-related controls.
We have a vision to further develop the Information Management functions within Quality & Risk to meet the growing number of assessment requests, legal and regulatory obligations and the ever-increasing volume of internal projects involving Information Security controls.
What we offer
We offer you a challenging workplace where we collaborate and exchange expertise and knowledge. More specifically, you will get the opportunity to learn and work in close collaboration with our National Information Technology Security Officer. You are expected to participate in various internal and external trainings required to keep you up to date with policies and regulations. With us, you will get the opportunity for certifications and professional development in, for example, ISO 27001 Lead Auditor/ Implementer or certification as a CISSP, if that is something you do not already hold today.
We support all business units at a time when digital transformation, whether internal or for KPMG clients, relies more than ever on Information Security governance best practices and controls.
We believe that you who applies for this position has worked at least three years within the field and has a background as an IT-Auditor or within Information and cybersecurity. Understanding IT-controls and processes and the ability to translate them into training for our business-units in a pedagogical way are key to this position. Furthermore, we think that you have:
A Bachelor or Master’s degree, preferably with a technical orientation, and a strong drive to develop within this field.
Competence in project coordination
Ability to work analytically, methodically with an orientation to problem-solving
Excellent skills in writing and oral communication in both English and Swedish

We also believe that you have the ability to communicate clearly and positively and are service-oriented and proactive. We think that you are a great team-player with a ability to multitask and take on different activities simultaneously.
Qualifying competencies
ISO 27001 Lead Auditor or Implementer certification
ITIL Fundamentals
SAFe agilist