ISMS and Compliance Manager - Automotive Business

As ISMS and Compliance Manager, you will work as part of the Security Assurance team to ensure the core compliance framework of ISMS is maintained industry industry-leading standards in terms of meeting robust compliance standards with ISO 27001 and other regulatory needs like TISAX, NIS2, local/regional requirements.  

You will play a key role in managing efforts to develop and implement the ISMS. You will work across the organisation to ensure the integrity of the ISMS is maintained and complied with by different roles, both central and regionally located. Your role will be both strategic and hands-on—leading key decision-making in real time while continuously and proactively improving processes that will help the overall compliance posture of Automotive.  

• Develop, implement, and maintain the ISMS towards ISO 27001 as the core compliance framework in SKF Automotive, meeting all central requirements and capabilities.
• Coordinate with different roles and responsibilities to ensure their current procedures and methods are being reflected in the ISMS policies and that SKF Automotive is compliant.
• Develop and implement a strategy to implement ISMS in SKF Automotive with continuous monitoring mechanisms.
• Work closely with different management systems to ensure that we together build a cohesive management system.
• Work closely with various key stakeholders and regulatory bodies to understand regulatory needs for SKF Automotive and utilize ISMS to meet those demands effectively and efficiently, both centrally and in regional scopes.  
• Work hands-on with different tooling ex. SNOW IRM and MS Purview Compliance Manager module to enable automated compliance reporting.
• Deliver compliance/non-compliance reporting to CISO to better facilitate appropriate measures for continued compliance.
• Understand and translate regulatory needs to be met by the ISMS requirements and meet protocols for continuous audit requirements.
• Facilitate risk management policies and procedures in Automotive for Information Security to ensure all controls are managed in a compliance manner.
• Enable and deliver continuous learning, awareness, and communication requirements for all stakeholders and various departments to understand and maintain compliance.  
• Build robust compliance requirements for core security processes, including security incident management, asset management, and cloud infrastructure.
• Facilitate regular ISMS audits and manage audit findings through ISMS requirements for internal, external and regulatory audits.

• A seasoned compliance manager with a strong regulatory background in tech and with experience in dynamic environments. 
• A natural problem-solver with the ability to act fast and decisively under pressure.
• Excellent communication skills and can educate, inform, and engage stakeholders at all levels.
• Certifications in the information security domain like CISM, CISSP, CISA or others to demonstrate advanced knowledge.
• Passion for building a world-class information security management function and shaping the future of resilience with new functions, improving processes, and working in dynamic environments.
• Enjoy taking ownership and leading with a strategic mindset while maintaining a hands-on approach when needed  
• Proven experience in regulatory frameworks and attending audit checks and validation procedures..
• An academic degree in a relevant field, or equivalent working experience.
• Comfortably and effectively communicating in English, both verbally and in written form.