Information Security Analyst

About this role

The Cybersecurity Lead for Europe and APEC (Asia Pacific excluding China) is responsible for driving the regional cybersecurity strategy, operational execution, and alignment across more than 30 markets. This role ensures strong protection across multiple security domains, elevates security maturity, and embeds a robust cybersecurity culture throughout the organization. The position reports directly to the Global Head of Cyber Security and serves as a key contributor to Volvo Cars’ global cybersecurity governance.

What you'll do

Strategic Leadership & Governance

- Define and execute the regional cybersecurity strategy, aligned with global cybersecurity objectives.

- Promote and strengthen a strong cybersecurity culture across all European and APEC markets.

- Serve as an active member of the Global Cyber Security Council, contributing to global strategy, policies, directives, and the overall cybersecurity roadmap.

- Own the regional compliance posture, ensuring alignment with cybersecurity standards and regulatory frameworks.

Collaboration & Regional Alignment

- Partner with local markets, regional teams, and global cybersecurity functions to improve security maturity across regions.

- Ensure consistent implementation of cybersecurity standards and drive cross‑regional alignment.

- Oversee cybersecurity relationships with regional affiliates, including conducting maturity assessments and managing the annual affiliate reporting process.

Incident, Crisis & Operational Responsibilities

- Act as Regional Incident Commander for Europe and APEC.

- Coordinate regional crisis management and response activities with the Global Cyber Defense Center (CDC).

- Provide expert guidance during incidents, ensuring proper escalation, communication, and mitigation.

Innovation & Technical Expertise

- Design and implement innovative cybersecurity solutions for emerging threats, especially where no existing frameworks exist.

- Assess complex technical environments, identify risks, and propose actionable mitigation measures.

- Lead and deliver technical cybersecurity projects across all regional markets.

Supplier & Third‑Party Risk Management

- Manage regional cybersecurity requirements for supplier onboarding.

- Oversee third‑party assurance processes and provide visibility of supplier‑related risks to global cybersecurity functions.

- Ensure consistent implementation of supplier cybersecurity obligations across markets.

What you'll bring

Must have: 

- Strong analytical, problem‑solving, and critical‑thinking skills.

- Deep technical knowledge of cybersecurity principles, practices, and threat landscapes.

- Demonstrated ability to lead strategic cybersecurity initiatives and operational delivery.

- Excellent communication and interpersonal skills.

- Highly organized and experienced in complex, multi‑market or regional projects.

- Familiarity with cybersecurity and regulatory frameworks.

- Hands‑on cybersecurity experience valued more than formal education.


Nice to have:

- Experience supporting local market and regional organizations ideally in Europe and/or Asia Pacific.

- A strong professional network within the cybersecurity community.

- Understanding of challenges across diverse regional markets (Europe + 7–8 APEC markets).