Oh oh! Awesome! {$ msg.text $} ({$ msg.count $})

Lead Security Architect/CISO

  • Applications are considered on a rolling basis
  • Stockholm
  • Applications are considered on a rolling basis
  • Stockholm

The world is changing in the way we consume products, from ownership to usership, and DigitalRoute is positioned in the centre of the transition. Because, when enterprises pivot to usage-based business models, they often make an unfortunate discovery. Their systems weren’t built to handle the massive data volumes and complexity that usage-based models generate. This causes them to leak revenue and respond too slowly to customer demand. DigitalRoute solves this by creating a real-time usage data layer for enterprises. Our products transform raw usage data into clear information for billing, in real time and at high scale.

We are looking for a passionate security professional to join our company and instrument the transition to a true SaaS-organization. We have a variety of interesting tasks to solve in different security domains – from classic cybersecurity (InfoSec) to product security architecture (AppSec) and automation (DevSecOps). Also, we keep a very open mind – the main criterion for this role is to deliver value and continuously improve DR’s security posture on an intense cloud journey.

What you'll do

As Lead Security Architect/CISO you will be our main expert in software security topics at DigitalRoute, with three core areas of responsibility

  • Ensuring DigitalRoute delivers software and services that are secure and guarantee data privacy without sacrificing usability. You will be working with product architects, developers and service leaders to architect and build current and future products that are secure by design. (AppSec)
  • With our DevOps and SRE teams, you will introduce, integrate and adjust security tools, checks and tests – all as part of CI/CD, continuously scanning code for issues and vulnerabilities. (DevSecOps)
  • You will play a key role in maintaining, renewing and improving our security according to ISO27001, ISO9001 and SOC2 standard certifications. As the most senior security expert at DigitalRoute you will also be holding the title of Chief Information Security Officer, consulting with our Compliance Manager and Head of Internal IT on security topics. (InfoSec)

You do not have to be equally skilled in all three areas – the most important is being curious and willing to learn and master these domains.

What you'll bring

  • Experience working as a security architect, InfoSec consultant, CISO or other security-focused role is an advantage.
  • Deep understanding of key security concepts – from encryption algorithms to incident response procedures.
  • MSc. in computer science, or Information Security, or equivalency of education and work experience is desired.
  • Structure, persistence, planning skills including natural aptitude to enthuse and engage people and share knowledge.
  • Ability to explain complex concepts in simple terms and talk to various audiences – from developers to executive leadership.
  • Be brave to challenge the status quo and able to identify opportunities for improvement, get the teams on-board and oversee the execution.
  • Lead by example and stay close to teams, problems and solutions.

Further we believe you to have experience in at least one of the following security tracks. We acknowledge that the three tracks are hard to master at the same time – if you feel you fit at least one of them well and are interested in other ones, do not hesitate to apply.

AppSec track:

  • Experience in building and running cloud-native products, forklifting and refactoring on-prem products for SaaS (K8S, microservices, AWS/Azure/GCP).
  • Hands-on development or scripting experience (I.e. Java, JavaScript, bash), being able to read and understand the code flows and secure the product.

  • Knowledge and know-how in threat modeling, security design, code review, security testing.

DevSecOps track:

  • Experience working with SAST (Static Application Security Testing), DAST (Dynamic Application Security Testing) and SCA (Software Composition Analysis) tools.
  • Understanding how to make the tools an integral part of the development lifecycle and ensure the quick feedback loop for all findings.
  • Knowledge of modern build and delivery systems and tools for both on-prem and cloud (I.e. Jenkins, ArgoCD, Github Actions, helm, Terraform)

InfoSec track:

  • Good knowledge of ISO27001 and/or SOC 2 standards and controls, participation in previous audits.
  • Experience in building lightweight yet effective processes that ensure security for the entire organization.
  • Ability to set a strategic direction, identify key initiatives and drive their execution in the security domain.

Work with great people

Ahmad Farouq
Test Engineer
"The unique of the company is putting the employees first. As an example, in R&D everyone will do a rotation of 2 months to another team to share knowledge as well to improve our collaboration. "
Johan Eriksson
Senior Solution Architect
"After 18 years DigitalRoute, I still feel that I develop my skills. We develop on-the-edge technology for any industry and we are working in an international environment with supportive colleagues. "
Silvia Huashuayo
"I love my job because people care about me as a person and about my professional growth. There is a genuine spirit of cooperation and shared goals. "
Josefin Malmqvist
Chief Customer Officer

Great Place to Work

  • Choose your tech gear

  • Work-life balance

  • We believe in an active lifestyle

  • Flexible public holidays

  • We have all the insurances you'll need

About the company

DigitalRoute has the only platform that is purpose built to convert raw usage data into billable items. This enables companies to capitalize on the growing wave of usage-based business models. More than 400 companies rely on our platform for usage-based monetization, quote-to-cash automation, finance system consolidation and telecom mediation. We deliver extreme precision in the most complex environments in the world. We’re the new standard for usage-based revenue.

True tech companyOur product is the core of our company. Its magical capabilities entitle us be on a journey innovating new business models with some of the world’s strongest brands. We can promise you extraordinary challenges every day within fields such as IoT, cloud computing and big data.

Create your own platform We are a team of highly talented people and we offer great opportunities for growth in our collaborative environment. We have a flat organization without excessive layers of management, in which we empower you to build your platform and together with us shape tomorrow’s Digitalroute.

We play on a global arenaWith 250 employees spread over 21 different countries, we are a true global company and you will for sure experience our global reach. Many of us are frequent travelers, visiting costumers and colleagues all across the globe. Maybe you will be next to take part of our global job rotation program?


Visit website