Information Security Officer - Automotive Product Cybersecurity Lead

Position Description


Volvo Group drives prosperity through transport solutions, offering trucks, buses, construction equipment, power solutions for marine and industrial applications, financing and services that increase our customers’ uptime and productivity. Founded in 1927, the Volvo Group is committed to shaping the future landscape of sustainable transport and infrastructure solutions. Countless career opportunities are offered across the group’s leading brands and entities that share a culture of Trust, Passion, High Performance, Change and Customer Success. Volvo Group Legal & Compliance contributes to realizing the vision of the Volvo Group by coordinating and providing services within the following areas: Legal, Governance, Security, and Internal Audit. With Volvo Group Legal & Compliance you will be part of a global and diverse team of highly skilled professionals who work with passion, trust each other, and embrace change to stay ahead. We make our customers win.


Mission and context


Information Security is a new department within Group Security. We are responsible for the 2nd level of information and cyber security defense within the Volvo Group. We are a growing global team of engaged and experienced people. We hope you will join us in creating an even more secure future for the Volvo Group.


In this role you will work across all businesses of Volvo Group to support the 2nd line automotive product information and cybersecurity activities.
The successful candidate reports directly to the Security Director Strategy and Governance


Main Responsibilities


The profile will be working cross teams and act as subject matter expert on product cybersecurity and be a key driver on product cybersecurity project or initiatives. Some of the persons responsibilities will be:
Creation & maintain the group-wide product cybersecurity governance and framework including directives
Lead the co-creation of governance documentation for Product cybersecurity with the Truck Division/Business Area/Group Functions
Support leadership to implement requirements related to the product cybersecurity framework
Act as subject matter expert for enquiries from Truck Division/Business Area/Group Functions on product cybersecurity
Give input to product cybersecurity risks
Support Change & Training dept. with cybersecurity related awareness and training creation and activities
Participate in product cybersecurity project and initiatives
Work across the Information Security function
Being the 2 LoD product cyber security contact for stakeholders in Volvo Group.





Your Background


To be successful in this position we believe that you have some of the following:
Master's degree in Information technology, computer science, cybersecurity, or related field
6+ years of professional product cybersecurity, information risk management, information security or cybersecurity
Good understanding of Information security related standards and best practices (these include ISO 27001, NIST Cyber Security Framework, UN R155, R156, ISO 21434, Vulnerability Management ISO 29147 etc.)
Experiences within automotive security architecture
Ability to articulate Product Cybersecurity and communicate effectively to various levels of management
Ability to work effectively with a wide range of teams including developers, senior management, customers, auditors, etc.
An industry certification (examples below) is a plus.
ISO 27001 Lead Implementer
CISM certification
Good social skills and team player
Excellent writing skills within technical policies



We are interviewing continuously so please send your application promptly.


If you have questions, please contact:


Ulrika Granfors Wellemets
Security Director
+46 739 028375


Kindly note that due to GDPR, we will not accept applications via mail. Please use our career site.