Careers

Digital & IT

Security Officer - Enterprise IT

Gothenburg, Sweden

Apply now

Security Officer - Enterprise IT

We are currently looking for a Security Officer to own and lead the security area of the Polestar internal Enterprise IT landscape worldwide.

If you are reading this, you probably already know that Polestar is an electric performance car brand. We work hard to create a unique experience for the customer, owner, and driver. The thrill of driving the car, the digital experience of buying, owning, and controlling a Polestar require us to push the limits of technology and software development. Sustainability has been there from the beginning, and we have set a moonshot goal for climate-neutral cars in 2030. There is an ocean of opportunities in this for talented IT professionals who want to dive in and make a difference.

The Information Security Department

The Information Security department at Polestar is expanding as the company is growing. Polestar is active in many countries and more markets will come at a rapid pace. The IT landscape complexity is growing and in Information Security we need to keep the company safe from a diverse set of threats. The main threats are cyber security-related and to protect against that, a solid foundation of security practices is needed.

The department is organized in several areas. This role will be in the Information Security Standards & Coordination area where there are 4 people that will all be supporting different areas of the organization and internally responsible for the support to one of the following areas: Enterprise IT, Digital Products, Manufacturing, and Car Development.

The other areas in the department will provide more specialized skills, like Secure Development practices, cryptography, Red Team/Pen testing, security architecture, and privacy to name a few. People that are interested in security sometimes have a somewhat diverse background and skill base. So will your colleagues and we will all complement each other.

About the role

The role is about leading the Enterprise IT security area and work with the delivery units in Polestar and guide them on what to do in information and cyber security. You will then ensure that helps them scope and assess risks and then ensure the departments get the help they need from the other InfoSec colleagues or perhaps that we need to source something from the outside.

At Polestar we are still a new company. You will need to be able to both work with policies and directives to be more practical in the work. You will report to the CISO of Polestar.

What you will do

· Ensure all Enterprise systems has an adequate security level, starting from the cradle (working with purchasing), under the lifetime (following the current threats and keeping risks updated) all the way to the end of life of a system.

· Assisting in the processes needed to reduce our attack surface by training users and InfoSec staff. This includes for instance on- and offboarding processes that are fully in place. Trust is good but to check now from end to end is better.

· Balance security with convenience. If practice becomes too cumbersome, users will find ways around it. We must focus on the efficiency of the employees as we are still a small organization and all the employee's time is crucial to protect.

· Threat watch and education of people and staff for your area. This is a collective thing but you need to take special care on the Enterprise IT threats, like Ransomware. We are about to launch Threat Modeling as a great way to put the finger on areas that are sensitive in a way that people can understand. There is an infinite number of good practices out there, but the real risks based on a real threat agent using a vulnerability are a different thing. So, you need to master the difference between risks and vulnerability.

· Together with the CISO you will be the main responsible for the Information Management System (ISMS) with all the policies, directives, and guidelines targeting the employees.

· In many countries, legislation is driving investments into the security area. Data protection, privacy, and car-related legislation are on the rise and it is part of the job to ensure that we are compliant in full.

Personal Qualities

· At Polestar we are building a new company. That requires that you are a shaper, i.e., you can create a process where the is none today and you are the one that proposes a solution.

· You want to create the best and most efficient protection for the company

· Open-minded. While you shape and create, the reflection on how security is adapted to the

· You can express what people must or need to do in a clear and convincing way

Skills

· Experience in Enterprise IT, ISMS, asset management, email security, etc.

· Good understanding of the current threat landscape and how to protect against them in an effective manner

· Good scoping skills. Understanding legal requirements and incorporate that into your solution proposal is a plus.

· Risk management and Threat Modeling is a plus


Questions

If you have questions, contact:

John Karman Head of Information Security (CISO) +46 734340612 [email protected]

Polestar - the guiding star

Polestar is an electric performance brand, determined to improve the society we live in by catalyzing the change to sustainable mobility. We are a global team of highly talented individuals who share a passion to change the world. We challenge conventions and we challenge ourselves for the purpose of innovation. We believe innovation is a team effort and that just like each component is critical to the performance of our cars each person working at Polestar is as important to the team and its performance. We work in close collaboration across empowered global teams that don’t settle for anything less than excellence.

At Polestar, the sky is the limit.

Is this you? If you are interested in joining the Polestar family, don't wait with submitting your application. We apply a continuous selection process and the job post will be open until the position is filled.

Data Privacy Counsel

We have an exciting opportunity at Polestar for a data privacy counsel who can work within a fast-paced and challenging start-up organization. You will play an important role in the Polestar team.

Date
Category
Legal
Location
Gothenburg, Sweden

Data Privacy Counsel

We have an exciting opportunity at Polestar for a data privacy counsel who can work within a fast-paced and challenging start-up organization. You will play an important role in the Polestar team.

29.06.2021
Legal
Gothenburg, Sweden
Polestar © 2021 All rights reserved