Ready to combine a security-first mindset with strong technical understanding to shape the future of digital banking? As Head of Information Security at Nordiska, you will lead the security strategy, guide architecture decisions and ensure secure delivery across our embedded finance platform - where banking meets tech. 

About Nordiska

Nordiska is a bank that provides innovative financial products for both companies and consumers. Nordiska Embedded is a platform for embedded financial services, where we offer savings, lending, and payment services, either under our own brand or through partners. Nordiska also provides corporate and real estate financing, as well as sustainable savings with a government-backed deposit guarantee.

What we offer

Our code of conduct is the foundation for everything we do. We act with honesty and responsibility to build long-term trust among customers, partners, and employees. We believe that diversity drives innovation and encourages each employee to contribute their unique expertise and perspective. We are driven and dedicated to making a difference. Our employees receive a competitive benefits package.

About the Role

As we continue scaling with embedded finance partners on a European level, we’re looking for a Head of Information Security to take end-to-end ownership of information security and cybersecurity. At Nordiska, security is more than compliance; it’s a core enabler of growth and trust. As our embedded platform capabilities expand, so do partner expectations and the need for clear security ownership, strong execution and pragmatic risk management. In this role, you will own Nordiska’s security posture and drive initiatives that strengthen resilience, governance, and operational security. You will ensure compliance with evolving requirements and frameworks, while embedding security into product development and day-to-day operations in close collaboration with Risk, Tech and Legal. This is a hands-on, operational leader role with accountability for both strategy and implementation. You will also serve as Nordiska’s primary security representative in external engagements - working with regulators, auditors, and partners - leading compliance efforts and ensuring Nordiska not only meets, but consistently raises the bar on security, governance and risk management. 

What You’ll Do

As Head of Information Security some of your key responsibilities are: 

• Lead Nordiska’s information security and cybersecurity work end-to-end, aligned with business priorities, partner expectations and regulatory requirements. 

• Lead and maintain the ICT security framework, including governance, implementation, and cross-functional coordination, while leading third-party security risk management through due diligence, contractual requirements, and ongoing monitoring of vendors and service providers. 

• Measure, report, and continuously strengthen Nordiska’s security posture through risk-based prioritization, clear metrics, and structured remediation, while owning incident management and regulatory reporting with well-defined procedures, timely escalation, and compliant communication with relevant authorities. 

•  Establish and maintain security governance and controls, embedding regulatory and industry requirements into policies, processes and steering documentation. 

• Lead security assurance and stakeholder management, including ISO work, internal/external/regulatory audits and assessments and advising management and the Board on risks and mitigations.

We’re Looking for Someone who has 

• 7+ years of experience in information security/cybersecurity, with at least 5 years in leading roles in technology or infrastructure-intensive environments. 

• Extensive experience in information security, cyber risk management and regulatory oversight, ideally within fintech, banking, or other highly regulated environments. 

• A strong understanding of modern cybersecurity principles and technical security concepts. 

• Hands-on experience driving audits, assessments and security programs, including regulatory reviews, risk assessments and remediation follow-up. 

• Solid knowledge of key regulatory frameworks and standards such as DORA, ISO 27001, and GDPR, and how to translate requirements into practical controls. 

• Excellent communication skills in both English and Swedish, with experience presenting to senior stakeholders and non-technical audiences. 

• Experience from a tech-driven organization (preferred), where security enables delivery, scale and partner trust.

Your Professional Profile  

• Proactive and accountable - you take ownership beyond “tech security” and ensure security and compliance are embedded across the business. 

• Structured and execution-oriented - you thrive in building, running and continuously improving compliance processes, not just overseeing them at a distance. 

• Independent and self-sufficient - you can drive progress without formal line management, leading through influence in cross-functional initiatives. 

• Collaborative and influential – you create alignment across departments and communicate risks, trade-offs, and priorities effectively across all levels of the organization.

Application & Process

If you’re looking to join a growth-driven environment that pairs innovation with profitability and reliability, welcome to Nordiska. We look forward to receiving your application. We review and interview continuously, with background checks as part of the final stage of our process. For questions about the role and or more information, you are warmly welcome to contact Ida Garamvölgyi, ida.garamvolgyi@nordiska.com or +46704 385 325.