We're looking for a colleague as IT & Information Security Manager

We are seeking a highly skilled and experienced IT & Information Security Manager (CISO) to lead our IT & Information security implementation and operations. The ideal candidate is well-versed in the latest IT security trends & technologies and possess a strong commitment to implementing security principles and standards, including ISO 27001 compliance, into our ways of working across the enterprise.

We aspire to become an organization where IT & Information Security is an integrated part of what we do, and it requires a candidate with the ability to balance policy enforcement and pragmatism to maintain high security standards whilst also being an enabler for introducing new technologies with a risk-based approach.

Solar is currently at a very high level when it comes to IT & Information Security. We want a candidate who is motivated by maintaining this high level, yet you will have the mandate to continuously develop and adjust our approach.

Your key responsibilities

Your responsibilities are broadly divided into five areas:

Strategic Leadership:

• Drive a comprehensive enterprise IT & Information security agenda and culture.
• Align security initiatives with business objectives to ensure the protection of information assets.
• Provide strategic risk guidance for IT projects, including the evaluation and recommendation of technical controls.

Policies & Compliance:

• Establish and enforce information security policies, standards, and procedures.
• Ensure compliance with relevant laws, regulations, and standards (e.g., ISO 27001, GDPR, NIS2).
• Conduct regular audits and assessments to identify and mitigate security risks.

Operational Management:

• Oversee the management and operation of security technologies, including firewalls, intrusion detection systems, and endpoint protection.
• Lead incident response planning, investigation and reporting of security breaches, coordinating with legal and disciplinary teams, and with relevant authorities where applicable.
• Manage the security awareness training program to educate employees on security best practices.
• Qualify new vendors, applications, technology and services from an information security perspective. 

Team Development:

• Build and lead a high-performing security team, providing mentorship and professional development opportunities.
• Foster a culture of security awareness and continuous improvement within the organization.

Communication & Reporting:

• Communicate the status of the information security program to senior group management, the IT Security Committee, and the Board of Directors.
• Ensure regular reporting on security metrics, incidents, and compliance status.

Your qualifications and our expectations

Minimum requirement is a bachelor’s degree in computer science, Information Technology, Cybersecurity, or a related field. Minimum of 7-10 years of experience in information security, with at least 5 years in a leadership role and a proven track record of managing and implementing security programs and technologies. Relevant certifications such as CISSP, CISM, CISA, or ISO 27001 Lead Implementer/Auditor are expected.

Your skills:

• In-depth knowledge of information security frameworks, standards, and best practices.
• Strong understanding of IT infrastructure, applications, and cloud security.
• Excellent leadership, communication, and project management skills.
• Ability to work effectively with cross-functional teams and manage multiple priorities.

Your personal attributes:

• Proactive and results-oriented with a strong attention to detail.
• Ability to stay current with the latest security trends and threats.
• Strong ethical standards and integrity.
• Pragmatic and solution-oriented
• A team-player

What you will get
An exciting position with a high degree of responsibility and freedom. A work life with challenging and varied tasks that foster your professional development. Competent and committed colleagues. A solid onboarding process with a combination of peer-to-peer learning and e-learning. A competitive salary package that includes healthcare and a pension scheme.

Location
Your primary location will be Vejen where our head office is located. It is possible to work from one of our offices in Brøndby or Aarhus, but you will have fixed working days in Vejen.

Interested
Do you have any questions or would you like to know more about the position? Contact Anders Odgaard, SVP Group IT, on +45 51 23 46 13 for an non-binding dialogue.

Apply no later than February 13
Does this sound like the right match for you? We are holding interviews on an ongoing basis, so send us your application as soon as possible. We look forward to hearing from you.

Since Solar is part of the Danish critical infrastructure, many of our positions are security classed. As this position is security classified the final candidates might be subject to a security vetting process, according to Danish legislation.

At Solar, we see diversity as a strength and work actively with diversity, including as part of DI's Gender Diversity Pledge. We therefore encourage qualified people, regardless of background, to apply for the job