Your Tasks

• Drive the optimization of cyber security processes, tools, and awareness initiatives with a strong focus on sustainable prevention, detection, response, and recovery capabilities.
• Ensure that Borealis company values, ethical principles, and compliance rules, as defined in the Borealis Ethics Policy, are consistently integrated into all cyber security–related activities.
• Analyze compliance with applicable information security policies, standards, procedures, and guidelines, and formulate recommendations for new or enhanced IT security standards and preventive measures.
• Design, develop, and maintain functional and technical specifications for enterprise IT security processes, tools, and solutions.
• Proactively monitor IT security technology, threat landscape, regulatory, and business trends, including tool enhancements, new releases, and alternative solutions, to ensure continuous improvement and future readiness.
• Act as a subject‑matter expert in the realization and quality assurance of IT security solutions, including operational vendor and service provider management.
• Provide senior expert support for the resolution of complex and sensitive cyber security incidents, including analysis, coordination, and follow‑up improvement actions.
• Actively involved in projects as a cyber security senior expert by advising project leaders on security planning, design decisions, and risk mitigation throughout the project lifecycle.
• Lead the design, maturity improvement, and operational execution of the Cyber Security Mindset & Awareness Program in compliance with ISO 27001 and the NIS2 directive.
• Evaluate, select, and manage cyber security awareness service providers to ensure effectiveness, quality, and alignment with Group security objectives.
  

Your Skills

• Education: Master level in Engineering, Computer science, Applied Communication. ITIL Certification
• Relevant professional experience > 9 years
• Excellent understanding of information security principles, policies, standards (such as ISO 27001, ENISA, PCI-DSS, NIST, and NISG), and human‑centric security risks, with the ability to translate them into effective awareness, communication, and behavioral change initiatives.
• Excellent communication, persuasion, and influencing skills, enabling the design and delivery of impactful cyber security messaging for diverse audiences, including non‑technical users, management, and executive stakeholders.
• Strong expertise in designing, operating, and continuously improving cyber security awareness programs, including training concepts, campaigns, and communication formats that measurably improve cyber hygiene and reduce risk.
• Excellent ability to analyze behavioral risks, awareness effectiveness, and participation data, and to convert insights into targeted improvement actions and management‑level reporting.
• Strong experience working in international, matrix‑organized organizations, with the ability to collaborate effectively across cultures, functions, and organizational boundaries.
• Strong understanding of business processes and how systems and applications are used by business partners, enabling practical, business‑relevant security awareness and guidance.
• Strong analytical, conceptual, and methodical thinking, with a clear focus on outcomes, continuous improvement, and measurable results.
• Proven ability to work effectively in ambiguous and evolving environments, adapting communication style, content, and approaches to changing risks and priorities.
• Solid experience in project work and agile environments, actively contributing as a team member in Scrum and Kanban setups and delivering results in self‑organizing, multidisciplinary teams.
• Working knowledge of information security practices and supporting tools, sufficient to collaborate effectively with technical security, IT, and compliance stakeholders.
• Working knowledge of commercial negotiation and tactical vendor management, particularly in relation to awareness and training service providers.
• Strong teamwork and collaboration mindset, with the ability to build trust, cooperate effectively, and contribute constructively within cross‑functional teams.
• Fluency in English, with strong written and verbal communication skills suitable for international and senior‑level environments.

Show more
Show less