Hurtigruten is one of the world’s great journeys, sailing and caring for the Norwegian coast since 1893. We are proud to be a national icon for generations of Norwegians and to have a special place in the hearts of our guests from around the world.
For 130 years, we've been committed to continuously improve what we do for our guests and the people we work with.
Hurtigruten ITOT delivers secure and stable global IT and OT services to our ships and offices. We base our decisions and targets on available data and risk evaluations. We strive to be the preferred technical partner to any department by being knowledgeable, available, and able - as one team.

What we are looking for
The Head of Cyber Security is responsible for Hurtigruten Cyber Security effort across all platforms and locations. The role will collaborate with other departments, enable and operate a framework for risk-assessed and scalable business operations by establishing the right security and governance practices.The Head of Cyber Security will hold a key position in the ITOT & Digital organisation and have a central role in shaping the future digital roadmap. The role reports to VP for ITOT.

Key Responsibilities & Accountabilities
SOC Implementation and Management

• Design, implement, and work with an external Security Operations Center (SOC) to monitor, detect and respond to security threats.

Technical Security Operations:

• Oversee security operations and maintenance, ensuring the confidentiality, integrity, availability of company and client digital & Physical assets.
• Oversee and work with internal and external teams to improve and optimize security controls, including firewalls, intrusion detection/prevention systems (IDS/IPS), and endpoint protection solutions.
• Conduct regular security assessments and vulnerability scans to identify and mitigate risks.

Security Incident Response:

• Lead the development and execution of incident response plans (CIRP), including conducting root cause analysis and remediation.
• Coordinate with relevant teams to respond to security incidents, ensuring timely resolution and minimal impact on business operations.

Security Policies and Standards:

• Develop, implement, and enforce IT security policies and standards across the organization.
• Ensure that security policies are aligned with industry best practices and regulatory requirements.

Continuous Improvement:

• Stay updated with the latest cyber security trends, tools, and techniques, and apply this knowledge to improve the organization's security posture.
• Provide training and awareness programs for the team to enhance their technical cybersecurity skills.
• Miscellaneous task

Skills and Qualifications

• Extensive experience and interest in Cyber Security.
• Preferably Bachelor/Master's degree in computer science or similar fields.
• Preferably certifications (in prioritized order): CCISO, CISM, CISSP, CISA and OSCP/CRT
• 3-5+ years of work experience in IT/information security
• Working knowledge of ISO27001, CAF, SCF and NIS2
• Previous exposure to different companies and industries

Preferred Qualifications

• Excellent verbal and written communication skills in English. Norwegian/Scandinavian is preferable.
  
• Good strategy and program planning skills
• Strong critical thinking, problem-solving, logic, and forensics skills.
  
• Ability to work successfully in both individual and team settings.
  
Ability to think like a hacker in order to stay one step ahead.

We Offer

• A developing and challenging workplace where you will be working with one of Norway's strongest brands.
• A great opportuity to participate in and influence the development of the department.
• A skilled, motivatad and dynamic work environment.
• Competitive remuneration and employee benefits.
• Staff discounts on our cruises in Norway and to some of the most exotic places on the planet.
• Hybrid working arrangements, with 3 days in the office and 2 flexible days.

Location: Oslo
We will be evaluating applicants continually.

Play your part

Inspire the Adventure

Make tomorrow better