GRC Security Advisor

Would you like to join a fantastic team of GRC (Governance Risk & Compliance) advisors, with the role of supporting our Customers and Account teams, as trusted advisor regarding IT security. The responsibility as a GRC advisor is to help our clients get to comply with the regulations and make them more mature so that they can be in control. As a GRC advisor, you will help create, develop and maintain our service offerings. Ensuring that our customers can continue to be compliant, secure and resilient. 

In our team we value teamwork, we support and help each other. We take pride in delivering the best advises to our customers. We are looking for a colleague, who will contribute to the team and our customers development, with knowledge and deliverables in IT security. We are offering a job with challenges and the potential to make an impact. 

Some of the main tasks affiliated with the job

  • Combine technical and non-technical security and being able to communicate this to management level
  • Understanding that business is core when we work with risk management, and that it must be sustainable
  • Possess or having the ambitions to acquire certifications, such as ISO 27001/27701 Lead Implementer and/or Lead Auditor, CISSP, or similar
  •  Additional experience with or in-depth knowledge to one or more of the statements below is highly valued:
  • Working with ISO2700x and CIS controls 
  • Design and implementation of management systems for IT and information security
  • Implementation of processes and structures to ensure compliance with GDPR, NIS1 and maybe NIS2 without having a legal background
  • Experience with different types of risk assessments or threat assessments
  • Experience with the CIS and NIST frameworks
  • Being able to translate compliance requirements into practical solutions
  • Knowledge of one or more GRC software solutions
  • Being able to write policies, guidelines and instructions that are practical, easy to understand and follow

 About you

  • Well anchored in several IT security disciplines, having technical skills but not a requirement
  • Having experience with ISMS, NIST, CIS18 
  • Certifications within IT security is a plus
  • +2 years of experience in managing security from a risk-based approach
  • Knowledge of different security frameworks.
  • Experience within risk management
  • Experience within monitoring customer threat levels
  • Experience within Security Maturity Assessment is a plus.

Other Qualifications

  • Great communication and presentation skills is a must
  • Able to build great relationship with customers, colleague, etc.
  • Team player
  • Capable to adapt to changes
  • Ability to work in a complex team structure
  • High degree of attention to details
  • High degree of analytic skills 
  • Fluently in written and spoken Danish and English

We offer

By joining us, you will get a mixture of colleagues that are highly skilled in tactical and strategic security. Colleagues who have a strong client focus. This provides a great diversity and good synergy to the team and our clients. 

If you are interested in learning and at the same time contributing with your extensive knowledge, this might be the opportunity for you. 

In KMD we have a strong focus on development, both personal and professional growth, which is why we offer good possibilities to pursue your areas of interest. At the same time, we take pride in being extremely good at internal mobility. 

Want to know more?

You are welcome to contact hiring manager, John Skovgaard on +45 40 19 67 12 for more information about the position.

The application deadline is January 30th, 2023, but we are continuously interviewing suitable candidates. We therefore encourage you to send your application, with cover letter and CV as soon as possible.

About us

KMD is the largest Danish-based IT company. We are a leading supplier of business-critical software, technology solutions and IT services primarily to Denmark’s public sector, but with a growing footprint in the private sector both domestically and in Sweden and Norway. The group includes KMD as well as our subsidiaries Banqsoft (Consumer Finance), Edlund (Life and Pension) and Charlie Tango (Digital Agency). 

The KMD Group has an annual revenue of around DKK 4.8 billion and around 2,600 employees. 

KMD is a separate subsidiary in the global Japanese technology company NEC Corporation.

Read more at kmd.dk or nec.com


KMD (an NEC company) is committed to provide equal opportunities. Hence, we invite all qualified interested applicants to apply for career opportunities. At KMD all aspects of employment and cooperation including the decision to hire /cooperate with will be based on merit, competence, performance, and business needs without regard to race, colour, religion, sex, sexual orientation, gender identity, national origin, age, disability, or any other status protected under local anti-discrimination legislation.

About KMD

KMD is the largest Danish-based IT company that develops and delivers software, solutions and IT services primarily to Denmark's public and financial sector and with a growing footprint in the private sector and in the Nordic region. Our unique domain knowledge, reliability and approach to security and operational stability make KMD today one of the most recognized and used suppliers in the Danish IT industry.

KMD's solutions help streamline processes and create better service for customers every day all year round. For example, our systems handle payments of wages and social benefits. In total, it will be about 400 billion kroner a year, which equates to more than 20 % of Denmark's GDP. The KMD Group has an annual turnover of 4.8 billion Danish kroner and has about 2,600 employees.

KMD's head office is in Ballerup, but also has offices in Odense, Aarhus and Aalborg. In addition, KMD also has employees in Poland, and partners in India. KMD is owned by NEC - a global leader in integrating cutting-edge IT and networking technologies that benefit businesses and people around the world. Nec employs more than 100,000 people globally.

KMD's size means that we offer a wide variety of professional challenges and a unique professional environment. With great know-how in complex areas of work and competent, ambitious and not least innovative employees, KMD is facing an international journey with the NEC. In KMD, we not only try to meet our customers' expectations, but strive to exceed them.

In KMD we expect to align with our employees through goal agreements and ongoing dialogue. It contributes to the mutual trust it takes to give our employees freedom under responsibility, flexibility and space to be who they are. KMD is a constant changing company where pace, agility and unknown parameters are a part of our everyday.

Gem job