Chief Information Security Officer - Information Security Domain Lead

We are seeking a dynamic and experienced Chief Information Security Officer (CISO) to lead the global information security domain at Polestar. As a pioneer in the electric performance car industry Polestar is redefining the automotive landscape through cuttingedge technology software innovation and a relentless focus on sustainability.

With our ambitious goal to create climateneutral cars by 2030 we are committed to pushing the boundaries of what is possible. The thrill of driving a Polestar is matched by the seamless digital experience of owning buying and interacting with our vehicles. This presents a unique opportunity for talented IT and security professionals to dive into a rapidly evolving environment playing a key role in securing Polestars digital future.

The opportunity

The Information Security Domain is a vital part of Polestars global operations tasked with safeguarding our increasingly complex IT landscape against a diverse array of cyber threats. As Polestar grows particularly in the fields of connected vehicles and digital ecosystems the security domain is crucial to protecting our infrastructure data and customer trust.

The information security domain encompasses four key areas:

• Ecosystems: Protecting Polestars digital assets worldwide.
• Capabilities: Leveraging expertise to defend against emerging threats.
• Operations Service: Ensuring seamless secure operations.
• Program Management: Overseeing strategic security initiatives.

As CISO you will lead a diverse experienced team of 13 professionals each aligned with these critical areas. Your leadership will ensure Polestars security objectives are met across all business and organisational units with a direct transparent engagement with Compliance Security and operational functions across the company. Your strong communication and collaboration skills will also secure a close cooperation with both the Corporate Security Officer (CSO) and the Product Security Officer (PCISO).

Your role is pivotal in shaping the future of Polestars digital security landscape.

The Responsibilities

As the CISO you will lead Polestars Information Security Team and oversee the management of the companys Information Security Management System (ISMS). You will work closely with delivery units to ensure that information and cybersecurity strategies are seamlessly integrated across all aspects of Polestars business. A core responsibility will be to evaluate the evolving threat landscape identify gaps in the current security posture and drive a proactive approach to digital risk management across the organisation.

In this role you will collaborate with crossfunctional teamsincluding digital functions internal stakeholders and thirdparty service providersto deliver a cohesive agile and resilient information security architecture. You will lead the creation and ongoing improvement of a security program that is adaptive to Polestars evolving digital ecosystem. Furthermore you will ensure that the necessary resources are in place to support the implementation and continuous improvement of security measures driving security maturity as the business scales.

As the leader of the Information Security domain you will be accountable for transparent and effective reporting to internal stakeholders at all levels including executive leadership and the board of directors. Additionally you will represent Polestars security interests to external stakeholders such as regulatory bodies and strategic partners ensuring the company meets all cybersecurity and compliance requirements.

At Polestar we pride ourselves on being dynamic and fastpaced. As the CISO you will need to balance working with highlevel security policies and objectives with a handson practical approach to problemsolving.

Key responsibilities include:

• Lead the Information Security Team aligning security strategy with Polestars business goals and technology roadmap.
• Implement a riskbased approach to security ensuring compliance and protecting Polestars digital assets.
• Take a senior role in incident and crisis management ensuring swift effective responses to security events.
• Steer the adoption of industryleading cybersecurity practices using frameworks like ISO and NIST.
• Enhance the ISMS managing internal and external security services.
• Direct security and risk management operations acting as the first line of defense for digital teams.
• Develop and refine security governance and architecture tailored to Polestars evolving digital needs.
• Ensure compliance with security standards collaborating with internal stakeholders for effective governance.
• Report on security posture and risks to senior leadership and regulatory authorities.
• Collaborate with digital teams to embed security into all development stages of Polestars digital initiatives.
• Mentor and support team members fostering professional growth and driving a highperformance culture.

The Ideal candidate

You are a dynamic leader with exceptional communication skills who can align the organisation on complex technical decisions ensuring clarity and cohesion across all levels. You will play a crucial role in managing stakeholders balancing their needs with firm decisiveness while maintaining critical security principles and business goals. Your ability to foster trust openness and transparency will enable a collaborative environment where ideas are freely shared and innovation thrives.

As an active coach and mentor you will empower your team to reach their full potential driving them to make meaningful contributions. Your energy and passion will inspire others fostering a culture of excellence and continuous improvement. You are also highly skilled in anticipating and managing change particularly in the fastevolving cybersecurity landscape ensuring stability and confidence among both internal and external stakeholders.

You bring a unique combination of creativity and composure pushing the boundaries of conventional security practices with innovative solutions. In highpressure situations you remain calm and composed leading your team through complex challenges with confidence.

In addition to the above you still need the following skills & experience:

• 10 years experience in digital organisations and security domains across multiple industries demonstrating broad and adaptable expertise.
• 5 years experience as a Line Manager leading security teams with proven capabilities in leadership and team development.
• 3 years experience reporting on security and risk management to senior leadership and regulatory bodies particularly in regulated sectors.
• Indepth knowledge and application of industry standards such as NIST ISO 27001 NIS2 and GDPR ensuring compliance and effective risk management.
• Proven track record of planning and managing comprehensive security programs leveraging a maturitybased approach in largescale environments.
• Skilled in implementing enterprisewide security technologies including Application Security Data Loss Prevention and SIEM along with traditional IT security measures like Endpoint and Network Security.
• Strong understanding of IT Operating Models including DevOps and ITIL ensuring seamless integration of security into operational workflows.
• Experience in managing technical priorities through threat and risk assessments ensuring effective allocation of resources.
• Global regulatory compliance knowledge particularly in China North America and the EU ensuring Polestars adherence to international security standards.
• Experienced in mentoring Information Security Specialists promoting professional growth and creating highperformance teams.
  
  

Polestar is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.