HIGHR Rekruttering jobopslag stillingsbeskrivelse – Chief Information Security Officer (CISO) – FORCE Technology

Chief Information Security Officer (CISO) – FORCE Technology

Join FORCE Technology as our CISO and lead the strategic security agenda in a company that shapes the future of technology. This role focuses on IT security governance—driving NIS2 compliance, ISO 27001 certification, and support the business units managing defense industry requirements—while collaborating with a skilled IT Opera-tions team for implementation. At FORCE Technology, you’ll work in a purpose-driven organization with a strong engineering heritage, supporting versatile businesses within critical infrastructure, and a culture that values trust, and professional growth.

Position: Chief Information Security Officer (CISO)

Location: Brøndby, Denmark

Reports to: Søren Stranne, EVP IT & Digitalization (CIO)

Direct Reports: None (works closely with IT Operations for implementation)

Business Travel: Maximum 10 days a year – locations in Denmark.

Why Join FORCE Technology?

  • Purpose-Driven Impact: Contribute to securing critical infrastructure and defense projects that matter for society.
  • Innovation & Expertise: Work alongside top specialists in a company known for technological excellence supporting the Danish industry and innovation ecosystem.
  • Strategic Influence: Shape the security governance framework from the ground up—your decisions will have a direct impact.
  • Professional Growth: Opportunity to lead compliance with NIS2 and ISO 27001 and gain experience in the defense sector.
  • Collaborative Culture: A flat, trust-based organization where your voice matters.
  • Digital Transformation: Strong business support to modernize IT infrastructure across sites & test facili-ties and improve business processes through rolling out large digital transformation program

Role Purpose

The CISO will be responsible for developing and maintaining FORCE Technology’s information security strategy, ensuring compliance with NIS2, achieving ISO 27001 certification, and supporting businesses in navigating and meeting security requirements for the defense market. This is primarily a governance and leadership role, where your experience in security will guide and educate the IT-Operations team.

Key Responsibilities

  • Security Strategy & Governance: Define and maintain the company-wide information security framework and roadmap.
  • Compliance Leadership: Drive compliance with NIS2, ISO 27001, and defense sector security require-ments.
  • Risk Management: Identify, assess, and mitigate IT security risks across the organization.
  • Policy Development: Establish and enforce security policies, standards, and best practices.
  • Stakeholder Engagement: Act as the primary security advisor to executive leadership and business units, handling information security aspects within contracts
  • Third-Party Security: Oversee security requirements for suppliers and partners.
  • Incident Response Oversight: Ensure robust incident response and reporting processes (execution han-dled by IT Operations).
  • Technology: Ability to understand and work with various security technologies, primarily the Microsoft stack.

Key Interfaces

  • Executive Leadership Team
  • IT Operations (for implementation)
  • Legal & Compliance
  • Business Units and Project Teams
  • IT Leadership Team

Required Qualifications

  • Proven experience in information security leadership roles.
  • Strong knowledge of NIS2, ISO 27001, and defense industry security requirements.
  • Expertise in IT security governance, risk management, and compliance.
  • Familiarity with security frameworks (e.g., NIST, CIS Controls).
  • Excellent communication and stakeholder management skills.
  • Hands-on knowledge of security frameworks, incident response, threat intelligence, and security tools such as SIEM, IAM, EDR, and cloud security solutions.

Preferred Qualifications

  • Experience in organizations transitioning to ISO 27001 compliance.
  • Background in defense or critical infrastructure sectors.
  • Relevant certifications (e.g., CISSP, CISM, ISO 27001 Lead Implementer/Auditor).

Key Challenges

  • Driving compliance in a non-ISO-certified environment.
  • Aligning security governance with defense market requirements.
  • Influencing without direct operational control.

Technologies & Platforms

FORCE Technology primarily operates on the Microsoft ecosystem, including:

  • Microsoft 365 (Exchange Online, SharePoint, Teams, OneDrive)
  • Azure Active Directory (Entra ID) for identity and access management
  • Microsoft Defender Suite (Defender for Endpoint, Defender for Office 365, Defender for Cloud)
  • Microsoft Intune for device and application management
  • Azure Security Center for cloud security and SIEM
  • Windows Server & SQL Server environments
  • D365 & Power Platform (Power BI) for business processes

Experience with these technologies is a strong advantage for understanding the security landscape and governance requirements.

Do you have the right skills and the desire to contribute to their continued success, or do you have questions about the position? You are welcome to contact Henriette Bekker at HB@highr.dk

We look forward to hearing from you!