Cybersecurity Leader | Vulnerability Management & Attack Surface Management | Enabling Functions

Cybersecurity Leader | Vulnerability Management & Attack Surface Management | Enabling Functions

About Us

We are on a journey to transform our digital capabilities, bringing core business processes, people, data & technology together - an enabler for IKEA to become an even better home furnishing retailer in the future. A journey that needs passionate people who embrace change, dare to question and want to make a difference. If that sounds like you, come and join us. Together we can do great things! 😊

About the role

We are seeking an experienced Cybersecurity Leader to join the Cybersecurity Protection team in the Information Security and Data Privacy (ISDP) function of Inter IKEA Group. In this role, you will lead the development and implementation of a comprehensive cybersecurity posture management program, ensuring proactive identification and mitigation of cybersecurity risk exposures across Inter IKEA’s digital products and platforms.

As a strategic and hands-on cybersecurity leader, you will lead cross-functional initiatives in the areas of vulnerability management, attack surface management, security posture management and technical compliance monitoring to enable prioritization and implementation of controls to reduce IKEA’s exposure to cyber threats.

About you

Are you a cybersecurity professional, passionate about protecting large, complex organizations against cyber threats and attacks? Are you a supportive coach and mentor for other Cyber professionals? Do you have a knack for spotting trends and finding creative solutions to complex problems? If so, then come join our small but fast-growing cybersecurity team at IKEA. We're a group of bright, energetic individuals who are dedicated to making healthy and sustainable living more accessible and affordable for everyone.

As our ideal candidate, you are an experienced cybersecurity professional with a mix of technical cybersecurity expertise and strategic orientation towards leading cybersecurity initiatives in the areas of security posture management, vulnerability management and attack surface management. You have:

• 8-10 yrs experience in leading cybersecurity initiatives focussed on vulnerability management, attack surface management and security posture management in a large, distributed organization with a hybrid IT landscape.
• Hands-on experience implementing security tools and automation for vulnerability scanning, asset discovery, technical compliance monitoring and security risk assessment. Experience with Qualys, ServiceNow and Microsoft security products will be beneficial.
• Passion and motivation for coaching, guiding and acting as a role model for other Cyber specialists across domains.
• Excellent communication and reporting skills with the ability to translate complex security issues into business-aligned strategies.
• Strong leadership skills, with experience leading cross-functional teams and influencing without direct authority towards achieving shared cybersecurity outcomes.
• Demonstrated ability to apply risk-based prioritization to reduce exposure to cyber threats and align security remediation efforts with business objectives.
• Solid understanding of emerging cyber threat landscape and associated attacker tactics, techniques and procedures combined.
• Familiarity with zero trust architecture models and associated technology pillars covering identity, endpoints, applications, cloud, networks and data security.

More specifically in this role, you will:

• Establish and lead a structured cybersecurity posture management program for continuous monitoring and proactive mitigation of cybersecurity risks associated with exposed digital assets including identities, devices, cloud services, applications and data.
• Lead and co-ordinate the implementation of vulnerability management process and supporting tools across the organization, ensuring alignment with risk-based approaches for prioritizing and remediating vulnerabilities.
• Implement processes and tools to continuously monitor and manage IKEA’s external attack surface, reducing exposure to cyber threats.
• Establish automated and scalable monitoring mechanisms to assess compliance against security policies, technical security standards and configuration baselines.
• Evaluate and integrate security posture data from multiple security tools for providing stakeholders with visibility and insights into the cybersecurity posture of their digital products and platforms.
• Lead cross-functional initiatives to drive mitigation of cybersecurity risks identified from vulnerability assessments, security monitoring, control testing and offensive security testing activities.
• Develop and implement operational playbooks supported by automated workflows for responding to security risk exposures and posture gaps.
• Collaborate with Security Operations and Incident response team to analyse root causes of incidents and implement corrective measures to improve security posture and prevent recurrence of incidents.
• Define and track key performance indicators and effectiveness metrics for security posture management, providing actionable insights for continuous improvement.

About The Area

IKEA Operations Management builds up, delivers, serves and supports shared data and technology for the IKEA value chain. Together we build a digital foundation to enable our core business partners and franchisees to work more efficiently and create a rewarding customer experience in an omnichannel world. Inter IKEA is on a journey to strengthen our ability to protect the IKEA brand from cyber risks and threats by developing, enhancing and implementing a set of cybersecurity capabilities.

About IKEA

At IKEA, we do things a little different. We think, differently. Act, differently. And work differently as well. We like to break things. Like rules. And then make things. Like music-playing lamps. And beds disguised as sofas. Even plant balls that help us look after our planet. It’s all part of our vision - to create a better everyday life for the many. And it’s been keeping our co-workers going for over 75 years. By 2030, we hope to help millions more look forward to going home. Maybe you can help us.

"At IKEA, we are looking for people who believe everyone deserves a seat at the table. You’re welcome no matter where you come from, what you believe, and what you look like. We don’t even care how you have furnished your home. We’re interested in you simply because you’re you. Even if your experience doesn’t align perfectly with every qualification in the job description, we encourage you to apply anyway. We believe that people’s different perspectives, backgrounds, and personalities make us better at understanding our customers dreams and needs. At IKEA, we’re all on the same project." Chris Ellis, Recruitment Leader