Senior Data Protection Specialist

Senior Information Security and Data Protection Specialist Role Description We are seeking a Senior Information Security and Data Protection Specialist who wants to take a central role in a larger development program focused on a modern data platform for analysis, research, and AI based on health data. You will be the key person in the program for issues related to information security and data protection, working closely with business units, legal teams, IT, and other experts to ensure a robust, legally compliant, and sustainable management of information. In this role, you will combine legal understanding with technical and operational expertise. You will independently drive the work on risk analyses, impact assessments, and security consulting, while actively contributing to the development of a strong information security and data protection culture. Responsibilities • Serve as the program's central resource for information security and data protection issues. • Participate in and support several parallel cross-functional projects related to the data platform for analysis, research, and AI. • Describe requirements for protective mechanisms and technical design from an information security and data protection perspective. • Collaborate with project and development teams to find solutions that meet internal and external requirements. • Drive the work on information classification and risk analysis within the framework of the program. • Independently conduct and document impact assessments (DPIA). • Propose modularization of risk analyses and measures to streamline the management of similar information in similar infrastructures. • Work on continuous improvement of processes, methods, and technical solutions from an information security and data protection perspective. • Continuously review and propose security-enhancing measures related to existing processes and systems. • Ensure that the work complies with regional guidelines and management systems for information security and data protection. Requirements • Several years of experience working with information security and data protection. • Excellent knowledge of relevant standards, such as the ISO 27000 series. • Good understanding of the General Data Protection Regulation (GDPR), the NIS2 Directive, and national legislation affecting personal data processing (e.g., the Public Access to Information and Secrecy Act and the Patient Data Act). • Documented practical experience in risk analysis and risk management from an information and IT security perspective. • Documented program and/or project experience focusing on information security and data protection work. • Relevant education with a focus on information security and data protection, or equivalent documented experience. • Knowledge and experience of Security by Design and Privacy by Design. • Excellent ability to express yourself in Swedish, both verbally and in writing. Meritorious • Knowledge of cybersecurity in one or more of the domains of IT, medical technology (MT), and/or OT. • Experience leading programs, projects, or process development. • Experience in information security and data protection work within public administration. • Experience working in data-intensive environments, such as AI and analytics platforms. Start / Duration • Start: January 2026 (according to agreement on the exact start date) • Duration: Until December 31, 2026 Location • Location: Lund About Rasulson Consulting Rasulson Consulting is a specialized staffing and recruitment company in the IT sector. We collaborate with both established technology companies and innovative startups to offer attractive career opportunities for those looking to develop in digitalization and IT. Through our deep technical expertise and extensive network, we match the right consultant with the right assignment – quickly and accurately. With us, you receive personal advice, continuous feedback, and the opportunity to take the next step in your career.