Information Security Specialist

Assemblin Caverion Group is a leading northern European provider of technical services and installations, delivering smart and sustainable solutions across the full lifecycle of the built environment. With around 20,000 professionals in nine countries, we help customers improve energy efficiency, sustainability, automation and digital resilience.

Join us in strengthening cybersecurity across a modern European IT environment. We are looking for an Information Security Specialist to support both security governance and hands-on security operations. This role combines ISO 27001-based ISMS development, risk and compliance activities, and operational security work within a Microsoft-centric security environment.

 

Location

Vantaa or Stockholm (office-first hybrid model)

 

Why Join Us

  • Work in a modern Microsoft cloud security environment (Entra ID, Defender, Sentinel)
  • Influence security governance and operational security improvements across an international group
  • Develop your expertise through certifications, training and challenging security initiatives
  • Collaborate with Group IT, IAM specialists, business stakeholders and senior leadership
  • Contribute directly to reducing cyber risk and improving organizational resilience

 

Key Responsibilities

Security Governance, Risk & Compliance

  • Support the operation, maintenance and continuous improvement of the ISO 27001-based ISMS
  • Implement and maintain security controls, policies, standards and procedures
  • Conduct and support risk assessments, audits and compliance activities
  • Maintain security documentation and governance artefacts
  • Drive security awareness and security culture initiatives across the organization

Security Operations & Technology

  • Work with Microsoft security technologies including Entra ID, Defender and Sentinel
  • Participate in threat monitoring, detection, investigation and incident response activities
  • Coordinate incident follow-up, remediation and lessons-learned activities
  • Collaborate with IT teams to strengthen the overall security posture
  • Contribute to security initiatives involving MFA, Privileged Access Management (PAM) and Zero Trust principles
  • Support continuous enhancement of security detection and response capabilities

 

Required Qualifications

  • Experience in information security, security operations and/or GRC
  • Good understanding of information security principles, controls and risk management
  • Experience with Microsoft security solutions or similar enterprise platforms
  • Experience with risk assessments, documentation and security processes
  • Understanding of incident detection, response and remediation processes
  • Structured and organized way of working

 

Preferred Qualifications

  • Experience working with ISO 27001-based ISMS environments
  • Familiarity with CIS Controls and other recognized security frameworks
  • Understanding of audit and compliance processes
  • Experience with SIEM/SOAR platforms such as Microsoft Sentinel
  • Exposure to AI security, AI governance or emerging technology risk topics
  • Certifications such as CISSP, CISM, SC-200 or ISO 27001 Lead Implementer

 

Personal Attributes

  • Analytical and risk-aware mindset
  • Strong collaboration and communication skills
  • Ability to work independently, take initiative and drive improvements
  • Curiosity and willingness to stay current with the evolving threat landscape

 

Position Context

Part of the Information Security function, reporting to the CISO. Works closely with Group IT, the IAM Service Owner and business stakeholders. The role balances security governance responsibilities with operational security activities and contributes to maintaining a secure and compliant IT environment.

 

Compensation & Benefits

Competitive salary aligned with Nordic market levels, together with benefits, flexibility and professional development opportunities.

 

Application

Please submit your application by Friday, August 14, 2026. We review applications continuously and encourage candidates to apply as soon as possible as the recruitment will be concluded as soon as suitable candidate is found.

For more information about the role, please contact Jari Törmälä, Chief Information Security Officer +358405285133 during the following times:

22.7. and 29.7. at 13.00-14.00

Apply between and

Assemblin Caverion Group

Phone: +358405285133
Location: Vantaa
Logo

Information Security Specialist

Are you sure you want to withdraw this application?

Saving changes
Saving changes
Saved!