Position Overview

Our product is primarily a cloud native system hosted in Microsoft Azure. Currently we’re undertaking a refactoring project to modernize the cloud infrastructure moving to a microservices oriented architecture.

Although a good track record when it comes to security, with a long list of customers with high security demands, including banks and health service providers, we have not yet become certified with regards to data and information security.

Our ambition is to be ready to initiate an ISO27001 certification in the second half of 2025, with sub-goal to have a clear gap analysis completed by the end of 2024.

We are looking for an experienced consultant to help us with performing the gap analysis and to pragmatically guide us to what needs to be implemented to be ready for an ISO27001 certification. It would also include hands-on work with setting up an ISSM and actively working with a selection of policies and processes.

You will be consulting the international R&D department with offices in Sweden, Finland Norway and the Netherlands, with your main contacts in Stockholm, Malmö and Helsinki.

Key Qualifications and Requirements

• An expert in the ISO 27000 framework and other similar standards
• Been responsible for or advised on at least two ISO27001 certifications for medium sized SaaS organizations
• Experience of hands-on work with setting up an ISSM
• Fluent in English, Swedish is a plus