Lennart BredbergGet in touch →
Available for senior information- and cybersecurity engagements

Information- and cybersecurity that survives contact with reality.

Senior information- and cybersecurity specialist with 30+ years in critical infrastructure — energy, water, aviation, industrial manufacturing and the public sector. I turn NIS2, ISO 27001 and IEC 62443 into operational reality.

Explore careerle…@…com
Portrait of Lennart Bredberg, Senior Information- & Cybersecurity Specialist
Currently
Leading 4 NIS2 programs · vCISO · DPO
30+
Years experience
4
Active NIS2 programs
15
IRT specialists led
70+
Countries (GDPR rollout)
01 / Profile

A senior hand for regulated complexity.

Seasoned information- and cybersecurity specialist with 30+ years of hands-on experience in critical infrastructure sectors. Currently leading four parallel NIS2 compliance programs — two in energy, one airport, and one rescue services organization.

Deep practical expertise in OT security (IEC 62443), zone and conduit segmentation, IAM/PAM architecture (SSO, federation, RBAC/ABAC, JML), and supply chain risk management. Proven track record of building incident response capabilities from scratch and aligning security investments with business objectives.

Based
Sweden · Available globally
Languages
Swedish · English
02 / Expertise

Twelve disciplines, one operating system.

Frameworks, standards and methodologies routinely deployed across client engagements.

01
NIS2 / Cybersäkerhetslagen Compliance
02
OT Security & IEC 62443
03
Gap & Risk Analysis (OT/IT/IAM)
04
Zone / Conduit Segmentation Models
05
IAM (SSO, Federation, RBAC/ABAC, JML)
06
Privileged Access Management (PAM)
07
Supply Chain Risk Management (SCRM)
08
Incident Response & CSIRT Build-up
09
ISO 27001 / 9001 Implementation
10
Stakeholder & Supplier Governance
11
IT/OT Integration
12
ITIL 4 / IT Service Management
03 / Career

Four decades, one through-line: trust at scale.

  1. Aug 2025 — Present
    via Triple z Management AB
    Syndis / IT-Säkerhetsbolaget
    Senior Consultant — Information Security, Cybersecurity & NIS2 Compliance
    • Leading four concurrent NIS2 compliance projects across energy, aviation and rescue services.
    • NIS2 gap and risk analyses (OT/IT/IAM) with prioritized roadmaps, cost intervals and accountability structures.
    • Designing incident and reporting procedures aligned with Cybersäkerhetslagen, including exercise and testing frameworks.
    • Supply chain security assessments (SCRM): supplier classification, contractual requirements, structured follow-up.
    • Governance: information classification, OT/IT segmentation, IAM/PAM principles, logging & change controls.
    • Operating as vCISO and external DPO; implementing IMS based on ISO 27001 and ISO 9001.
  2. Sep 2020 — Jul 2025
    Stockholm
    Atea Sweden
    Chief Consultant Security & National IRT Lead
    • Built Atea Sweden's national Incident Response Team from the ground up — recruited and onboarded 15 specialists.
    • Designed the strategic and operational IR framework, NIS2-aligned mandatory reporting timelines.
    • Delivered NIS2 planning, gap assessments and implementation support for public sector and utility clients.
    • Conducted ISO 27001 ISMS assessments for municipalities, utilities and manufacturers with complex IT/OT.
    • Authored the internal GTM playbook for IR services: pricing models, service tiers, value messaging.
  3. 2016 — Present
    Founder
    Triple z Management AB
    Owner — Risknavigator™ & AI Risknavigator™
    • Strategic consultancy platforms for Information Security, Data Protection and AI Governance.
  4. Sep 2019 — Apr 2020
    ASSA ABLOY AB
    Data Protection / GDPR Specialist — global HRIS rollout across 70+ countries.
  5. Oct 2017 — Aug 2020
    Ahlsell AB
    Senior PM EU GDPR Strategy · Interim CISO · Data Protection Manager
  6. Jan 2017 — Jun 2018
    Husqvarna Group
    Information Security Consultant & Global EU GDPR Program Manager
  7. 2010 — 2016
    Amsterdam · Sweden
    Sandvik Mining & Rock Technology
    Strategic IT Program Director · IT/OT & Supply Chain · PMO Lead
Earlier career
Risknavigator Ltd, London
Senior Management Consultant
2009 — 2010
Confidence International, Stockholm
Senior Security Consultant
2004 — 2009
AESP Sweden, Uppsala
Country Manager
2001 — 2004
Gefle Varv / BEAB
Founder & Business Owner
1994 — 2001
Exact Holding, Sandviken
CEO
1992 — 1994
Nordea, Sandviken
Bank Director & Branch Manager
1987 — 1992
04 / Credentials

Education & certifications.

BSc Business Administration & Marketing
Uppsala University · 1983 — 1987
Certified Lean Six Sigma — Black Belt
Sandvik Mining · 2015 — 2016
Registered Trademarks
Risknavigator™ · AI Risknavigator™ — Triple z Management AB (founded 2016)
05 / Let's talk

Have a complex information security, OT or NIS2 challenge?

Engagements range from short advisory sprints and gap analyses to multi-year program leadership and vCISO mandates.

Email
le…@…com
Phone
+46 •• ••• ••18
LinkedIn
/in/lennartbredberg