Senior Security Consultant – National Security
Would you like to work with challenges related to national security?
In mnemonic, we help public and private actors protect critical assets and functions in the cyber domain. Many of our clients deliver services that are society-critical or even of fundamental national importance. National digital security is an important focus area for mnemonic. Due to the current geopolitical climate and cyber threat landscape, we experience strong demand for our services. Therefore, we need new, experienced colleagues, who can help us improve the national security baseline going forward.
mnemonic responds to the region’s most serious cyberattacks. We work side by side with Europe’s most important organisations and critical infrastructure to protect them from the cyberattacks they see today, and what they can expect to see tomorrow.
At more than 350 employees, we are amongst the largest pure play security companies in Europe, and continue to grow rapidly in Norway and internationally. In addition, we are continually ranked by Great Place to Work as one of Norway’s and Europe’s top workplaces.
You will be working with
You will have the opportunity to work with many varied tasks, including:
- Leading and contributing to projects related to the Norwegian Security Act and associated regulations
- Performing audits of compliance with laws and standards
- Developing security strategies for critical societal functions
- Leading risk assessments and establishing frameworks for risk management
- Establishing, developing and operationalising information security management systems
- Managing large implementation projects
- Taking part in relevant fora connected with national security
- Assessing security related to procurement, outsourcing and digital investments
What you will bring
The ideal candidate has a background from one of the following areas:
- Supervisory or security authorities (national or sector-authority)
- Audit firms
- Critical infrastructure and operational technology (OT)
- Legal, justice or defence sectors
- Intelligence services
- Information security, IT-security, cloud security
Expertise and experience
Our team working on national digital security is multidisciplinary, with diverse backgrounds. We wish to maintain a wide range of expertise. You should have experience with at least three of the areas below, and a desire to gain skills about the rest.
- Management by objectives
- Strategy development and implementation
- Management systems (Business Management and/or Information Security Management Systems)
- Audit
- Incident and/or crisis management
- Program/project management
- Threat intelligence
- Organisation theory
- Personnel safety
- Physical security
- Object security
- Emergency preparedness
- Cryptographic security
- Risk Management
- Internal Control
- Due diligence
- Quality assurance in accordance with the governments project model
Relevant laws, standards and other best practices
We would also like you to have experience with at least one of the following, with a desire to learn more about additional areas:
- National Security Act
- Instructions for the Ministries' work with civil protection and emergency preparedness (Samfunnssikkerhetsinstruksen)
- GDPR
- NIS1/NIS2 directives
- NIST standards
- Prince 2
- Security course held by NSM (the national security authority)
- ISO 27001/27002
- CMMC
- Certified Information Systems Auditor (CISA)
- Certified Information Security Manager (CISM)
- Certified in Risk and Information Systems Control (CRISC)
- Certified Information Systems Security Professional (CISSP)
- Certificate of Cloud Security Knowledge (CCSK)
Personal qualifications
- Good verbal and written communications skills in Norwegian and English
- Team skills
- Leadership skills
- Business understanding
- Productive and proactive
If you feel you have several of the qualifications we are looking for, but that the profile is to narrow, you are welcome to send an open application.
You will be joining our multidisciplinary National Digital Security team. Moreover, you will be part of the Governance, Risk & Compliance department (GRC). Together with your colleagues, you will work with customers on managing digital processes, security management, risk management and strategy, as well as compliance with privacy and security requirements. This means you get to be close to decision makers, and you will be considered a reliable sparring partner in strategic decisions. In GRC, you get the opportunity to work on projects and services across all disciplines in mnemonic.
What we can offer
- An informal and pleasant working environment that provides opportunities for growth, influence and variations in tasks
- Competitive salary, share program and bonus scheme that promotes a long-term employment outlook, including attractive pension and insurance coverage
- Opportunities for relevant professional training (courses) and conferences
- We place a strong emphasis on workplace well-being and teambuilding through social activities, events and trips with colleagues. In addition, we have an inclusive environment that promotes work-life balance and accommodates to families.
- Our HQ is centrally located in Solli plass with work from home opportunities
- A workplace that is ranked as one of the best in Europe. In Norway we have been amongst the top 10 workplaces for 10 years in a row. This year, we won our category!
How do I apply?
Send an application to [email protected] and include the tag "GRC nasjonal sikkerhet" in the subject field on the email. Include a description of why you are suited for the job, as well as your CV.
If you have publications, or other texts you feel represent your competence, please include them or include a reference to them.
Applications will be reviewed continuously.
Background check
We use Semac AS for background checks in our recruitment process. You must be able to be security cleared in accordance with the Security Law to SECRET (HEMMELIG).
Do you have questions about a career in mnemonic?
