IT Security Specialist

We are looking for an Information/IT Security Specialist with an enthusiastic and independent mindset to join our Infrastructure and Security team. This team is the heart of Kivra and is building and supporting a large, scalable platform for all our services. The platform provides distributed systems that handle all our data with great reliability and security.

About Kivra

We believe that digital postal services make life easier for both the sender and the recipient, while at the same time contributing to a more sustainable world. Over 1 billion envelopes are sent through Kivra every year, in Sweden alone. We think that there’s a better, faster, more secure and more environmentally friendly way to do this. That’s why we created Kivra.

What you'll do

At Kivra we consider Information/IT Security as being part of our core business. We provide digital content to over 5,5 million people who all rely on us to protect their data and assure it is always available. You'll play a key role in Kivras Infrastructure and Security team, where you will work alongside great colleagues with a strong focus on building and improving our security posture. You will also be part of our CISO lead Virtual Security Team coordinating all things security, including Information, IT, Physical and Personal Security.

Your focus will be assessing our current IT Security setup, implementing new IT Security measures, evaluating various technical security functions as well as new tools in order to drive the technical and system related security initiatives at Kivra. Another important part of this role is to support the Product Teams in identifying Information/IT Security related risks and requirements as well as related testing activities. In this regard, you are not unknown to working independently, driving other parts of the organization towards objectives.

To succeed in this role, we believe you have documented experience of:

• A minimum of four years working within Information/ IT Security, either as a consultant or as part of a security organization, preferably within the digital services industry

• Knowledge and understanding of (building and implementing controls) ISO 27001/2

• Operating independently, with initiative and integrity

• Speaking and documenting in English

Many of our Kivra colleagues spend some, or in some cases (depending on their roles), most of their time working remotely. For this Information/IT Security Specialist role we would prefer if you are able to work on-site at our office in Stockholm a couple of days a week (with variations over time).

We also believe the following would be a plus:

• Knowledge of NIST CSR, SANS and similar frameworks

• You might have done Source Code Review

• Maybe you know how a SOC operates and what the requirements are?

• Experience with log management and/or SIEM technologies such as Splunk would be great

• IAM on a technical level

• Cloud security requirements and verification

• A Development, DevSecOps and/or Programming background is probably useful

• Threat Intel on an operational level

• Development of Security Standards

• Experience in infrastructure development/operations

We offer

Kivra offers a place in a committed team with the opportunity for a high degree of innovation. You will be involved in influencing Kivra's exciting business and product development of a service that is currently used by more than half of Sweden's population. One of Kivra's values is happy-happy, which is also reflected in the concern for Kivra's staff. In addition to collective agreements and wellness, we offer a number of other great benefits.

How to apply

Easy peasy, just send in your CV and cover letter (preferably in English) as soon as possible. If you have any questions whatsoever, please don’t hesitate to contact Sarah Ohlsson, Talent Acquisition Partner, at sarah.ohlsson@kivra.com.