IT Security Project Manager

As the internal support organization for DNV and DNV owned companies, we deliver shared services within Human Resources, Finance, IT and Real Estate & Procurement to DNV globally. Our mission is to enable DNV to grow, succeed with its business goals and improve competitiveness. Customer experience is at the core of everything we do. GSS is responsible for many of the tools, processes and daily routines that create the backbone of DNV.

Cybersecurity is a dynamic and prominent domain, and the need for expertise in IT and information security is high. We are seeking an enthusiastic IT Security Project Manager with a strong background in cybersecurity, governance, risk management, and compliance.

The IT Security Management unit is one of two security units in the GSS IT organization, providing a broad range of security services internally to DNV. The primary focus of the IT Security Management unit is on Governance, Risk, and Compliance (GRC). Our services consist of information security risk management, vendor security assessments, application security assessments, security architecture and security advisory. The unit collaborates closely with DNV Business Areas and DNV Group functions.

Key responsibilities:

As part of the IT Security Management team, the focus areas for the Senior IT Security Project Manager may include:

• Project Management for selected projects, which may include but not be limited to:
  • Business Continuity
  • IT Security governance improvement
  • Information Protection and Data Loss Prevention
  • General security improvement projects
  • Third party security risk management
• Contribute on cybersecurity matters in DNV mergers & acquisition (M&A) processes (e.g. take part in Due Diligence and Integration projects)
• Drive the GSS IT part of the DNV Group Cyber Security Insurance renewal process
• Potential lead role in the Security Emergency Response process (CSERT), and take part in cyber security investigations
• Conduct gap assessments and audits towards relevant security policies.
• Facilitate and conduct security risk assessments
• Help DNV Business Areas navigate the complex landscape of cyber threats and risks
• Collaborate with Group and Business Areas on information security, including involvement in relevant projects

Location: Norway, Høvik.

This role may entail occasional travel to various locations as part of job responsibilities.

Posting Deadline: 04/05/2025.

As part of our standard background check procedure in Norway, a background check will be conducted by Semac in accordance with local regulations and DNV policies.

Reasons to join us:

• Attractive rewards. We offer a comprehensive benefits package, including 6 weeks annual vacation, subsidised canteen, competitive pension, insurance, and parental leave agreement, in addition to a global profit share scheme.
• Work/life balance. We offer flexible working hours and workplace, with focus on work/life balance for our employees.
• Supportive and caring culture. Our international culture embodies diverse colleagues who value teamwork and inclusion across business areas and borders. We offer opportunities for our employees to connect through social and professional networks.
• Career and development. DNV offers extensive possibilities to grow and develop your competencies and career ambitions. We have a strong company culture with emphasis on growth mindset, knowledge sharing, and professional and personal development.
• By joining DNV you become part of a world-leading company whose purpose is to safeguard life, property, and the environment. Our values "we care, we share, we dare" characterize how we work and behave towards each other and our customers.
• Our Høvik office is in beautiful surroundings by the sea and can offer access to sailboats, kayaks, tennis courts etc. We have more than 30 activity groups for you to join, as well as gym facilities and a kindergarten located on our premises. It is also worth noting that we offer free parking and shuttle buses to and from Skøyen, Lysaker and Sandvika.

DNV is an Equal Opportunity Employer and gives consideration for employment to qualified applicants without regard to gender, religion, race, national or ethnic origin, cultural background, social group, disability, sexual orientation, gender identity, marital status, age or political opinion. Diversity is fundamental to our culture, and we invite you to be part of this diversity.

We are looking for a candidate with:

• A university degree in technological sciences (preferably computer science)
• At least 5 years of experience within IT and information security
• A good understanding of security architecture and current cyber threat landscape
• Experience from implementation of ISMS and ISO 27001 certification processes
• Experience from IT security process work and continuous improvement planning
• Proven skills and relevant experience in IT security project management
• Experience with information security risk management
• Good knowledge of Microsoft's product portfolio, with emphasis on the security stack
• Effective engagement skills for both senior management and IT professionals
• Excellent communication and interpersonal skills
• Excellent attention to detail as well as spoken and written communication; demonstrating strong presentation skills
• Fluent proficiency in English – written and oral; working language is English.
• Outstanding analytical and problem-solving abilities
• Excellent Organization, Planning and Time Management skills
• Experience with security standards such as ISO 2700x, NIST, SANS, CSA CCM, GDPR, and DORA.

Desired personality traits:

• Adaptable, proactive, self-driven, and service-oriented mindset
• Analytical mindset with a problem-solving approach.
• Ability to work independently and drive projects to successful completion.
• Comfortable navigating new challenges with a personal drive to achieve goals
• High integrity

Preferred:

• Project Management Certification (PMI PMP, PMI ACP or PRINCE2 Practitioner)

We look forward to having you on the team