We are seeking a dynamic and experienced Chief Information Security Officer (CISO) to lead the global information security domain at Polestar. As a pioneer in the electric performance car industry, Polestar is redefining the automotive landscape through cutting-edge technology, software innovation, and a relentless focus on sustainability.

With our ambitious goal to create climate-neutral cars by 2030, we are committed to pushing the boundaries of what is possible. The thrill of driving a Polestar is matched by the seamless digital experience of owning, buying, and interacting with our vehicles. This presents a unique opportunity for talented IT and security professionals to dive into a rapidly evolving environment, playing a key role in securing Polestar’s digital future.

The opportunity 

The Information Security Domain is a vital part of Polestar’s global operations, tasked with safeguarding our increasingly complex IT landscape against a diverse array of cyber threats. As Polestar grows, particularly in the fields of connected vehicles and digital ecosystems, the security domain is crucial to protecting our infrastructure, data, and customer trust.

The information security domain encompasses four key areas:

• Ecosystems: Protecting Polestar’s digital assets worldwide.
• Capabilities: Leveraging expertise to defend against emerging threats.
• Operations Service: Ensuring seamless, secure operations.
• Program Management: Overseeing strategic security initiatives.

As CISO, you will lead a diverse, experienced team of 13 professionals, each aligned with these critical areas. Your leadership will ensure Polestar’s security objectives are met across all business and organisational units, with a direct, transparent engagement with Compliance, Security, and operational functions across the company. Your strong communication and collaboration skills will also secure a close cooperation with both the Corporate Security Officer (CSO) and the Product Security Officer (P-CISO).

Your role is pivotal in shaping the future of Polestar’s digital security landscape.

The Responsibilities 

As the CISO, you will lead Polestar’s Information Security Team and oversee the management of the company’s Information Security Management System (ISMS). You will work closely with delivery units to ensure that information and cybersecurity strategies are seamlessly integrated across all aspects of Polestar’s business. A core responsibility will be to evaluate the evolving threat landscape, identify gaps in the current security posture, and drive a proactive approach to digital risk management across the organisation.

In this role, you will collaborate with cross-functional teams—including digital functions, internal stakeholders, and third-party service providers—to deliver a cohesive, agile, and resilient information security architecture. You will lead the creation and ongoing improvement of a security program that is adaptive to Polestar’s evolving digital ecosystem. Furthermore, you will ensure that the necessary resources are in place to support the implementation and continuous improvement of security measures, driving security maturity as the business scales.

As the leader of the Information Security domain, you will be accountable for transparent and effective reporting to internal stakeholders at all levels, including executive leadership and the board of directors. Additionally, you will represent Polestar’s security interests to external stakeholders, such as regulatory bodies and strategic partners, ensuring the company meets all cybersecurity and compliance requirements.

At Polestar, we pride ourselves on being dynamic and fast-paced. As the CISO, you will need to balance working with high-level security policies and objectives with a hands-on, practical approach to problem-solving.

Key responsibilities include:

• Lead the Information Security Team, aligning security strategy with Polestar’s business goals and technology roadmap.
• Implement a risk-based approach to security, ensuring compliance and protecting Polestar’s digital assets.
• Take a senior role in incident and crisis management, ensuring swift, effective responses to security events.
• Steer the adoption of industry-leading cybersecurity practices, using frameworks like ISO and NIST.
• Enhance the ISMS, managing internal and external security services.
• Direct security and risk management operations, acting as the first line of defense for digital teams.
• Develop and refine security governance and architecture, tailored to Polestar’s evolving digital needs.
• Ensure compliance with security standards, collaborating with internal stakeholders for effective governance.
• Report on security posture and risks to senior leadership and regulatory authorities.
• Collaborate with digital teams to embed security into all development stages of Polestar’s digital initiatives.
• Mentor and support team members, fostering professional growth and driving a high-performance culture.

The Ideal candidate

You are a dynamic leader with exceptional communication skills who can align the organisation on complex technical decisions, ensuring clarity and cohesion across all levels. You will play a crucial role in managing stakeholders, balancing their needs with firm decisiveness while maintaining critical security principles and business goals. Your ability to foster trust, openness, and transparency will enable a collaborative environment where ideas are freely shared and innovation thrives.

As an active coach and mentor, you will empower your team to reach their full potential, driving them to make meaningful contributions. Your energy and passion will inspire others, fostering a culture of excellence and continuous improvement. You are also highly skilled in anticipating and managing change, particularly in the fast-evolving cybersecurity landscape, ensuring stability and confidence among both internal and external stakeholders.

You bring a unique combination of creativity and composure, pushing the boundaries of conventional security practices with innovative solutions. In high-pressure situations, you remain calm and composed, leading your team through complex challenges with confidence.

In addition to the above you still need the following skills & experience:

• 10+ years’ experience in digital organisations and security domains across multiple industries, demonstrating broad and adaptable expertise.
• 5+ years’ experience as a Line Manager, leading security teams with proven capabilities in leadership and team development.
• 3+ years’ experience reporting on security and risk management to senior leadership and regulatory bodies, particularly in regulated sectors.
• In-depth knowledge and application of industry standards such as NIST, ISO 27001, NIS2, and GDPR, ensuring compliance and effective risk management.
• Proven track record of planning and managing comprehensive security programs, leveraging a maturity-based approach in large-scale environments.
• Skilled in implementing enterprise-wide security technologies, including Application Security, Data Loss Prevention, and SIEM, along with traditional IT security measures like Endpoint and Network Security.
• Strong understanding of IT Operating Models, including DevOps and ITIL, ensuring seamless integration of security into operational workflows.
• Experience in managing technical priorities through threat and risk assessments, ensuring effective allocation of resources.
• Global regulatory compliance knowledge, particularly in China, North America, and the EU, ensuring Polestar’s adherence to international security standards.
• Experienced in mentoring Information Security Specialists, promoting professional growth and creating high-performance teams.
  
  

Polestar is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.