Senior IT Security & Risk Officer

💻 Ework Group - founded in 2000, listed on Nasdaq Stockholm, with around 13,000 independent professionals on assignment - we are the total talent solutions provider who partners with clients, in both the private and public sector, and professionals to create sustainable talent supply chains.

With a focus on IT/OT, R&D, Engineering and Business Development, we deliver sustainable value through a holistic and independent approach to total talent management.

By providing comprehensive talent solutions, combined with vast industry experience and excellence in execution, we form successful collaborations. We bridge clients and partners & professionals throughout the talent supply chain, for the benefit of individuals, organizations and society.

🔹 For our Client from automotive industry we are looking for 2 Senior IT Security & Risk Officers - 2 days from the office🔹

The consultants will drive complex cross-functional initiatives related to the implementation of cybersecurity regulatory requirements, including NIS2, the Cyber Resilience Act (CRA), and DORA. The assignment focuses on translating regulatory requirements into practical implementation initiatives, structuring and driving regulatory workstreams, and ensuring alignment across technology, cybersecurity, and business stakeholders in a large global enterprise environment.

The consultants will operate as part of the DTO NIS2 Program and report directly to the NIS2 Program Lead. They are expected to take ownership of initiatives, independently drive progress, and support the program in moving from regulatory interpretation to concrete implementation and remediation.

This role requires individuals who are comfortable operating in complex organizations, navigating ambiguity, and driving progress through influence.

Assignment Details

• Duration: 6 months with possible extension 
• Start: As soon as possible 

Codzienne zadania

• Lead and drive cross-functional initiatives supporting the implementation of cybersecurity regulatory requirements (NIS2, CRA, DORA). 
• Translate regulatory requirements into structured implementation plans, actionable initiatives, and remediation activities. 
• Identify regulatory gaps and support the development of implementation roadmaps and prioritized action plans. 
• Drive execution of assigned initiatives across multiple stakeholders in technology, cybersecurity, risk, legal, and business organizations. 
• Facilitate working sessions and stakeholder alignment to ensure clear ownership, progress, and decision-making. 
• Track initiative progress, risks, and dependencies and ensure timely escalation where required. 
• Contribute to program governance and reporting, including preparation of status updates and decision material for senior stakeholders. 
• Support the continued structuring and operationalization of the DTO NIS2 Program. 

Required Experience

• Proven experience of the implementation of cybersecurity or technology regulatory requirements in large organizations.
• Strong experience driving complex cross-functional initiatives in corporate environments.
• Ability to translate regulatory expectations into practical and implementable actions.
• Experience engaging and aligning senior stakeholders across technology and business organizations.
• Excellent communication, facilitation, and coordination skills.
• Ability to operate independently and proactively in a complex organizational environment.

Must have

• Security
• Cybersecurity
• DORA