Information Security Officer
TUI Group is the world’s number one integrated tourism business. The Security Domain is a global team within TUI technology responsible for leading Information Security risk management across TUI. We are a multi-disciplinary team of experts across Architecture, Engineering, DevOps and Agile Delivery providing services across the UK, Ireland, Sweden, Norway, Denmark, Finland, Germany, Belgium and The Netherlands.
At TUI we’re ambitious to become the leader in technology within the travel industry and to achieve this we are looking to build a capable, creative team who want to be a part of accomplishing that goal.
We never stop looking ahead, seeking new ways to delight our customers and grow our business. We recognise the power of digital and the massive contribution this brings to creating a truly unique and differentiated customer experience.
We are looking for a talented and dedicated security leader to join the Governance, Risk and Compliance (GRC) team which supports the Group CISO in their responsibility to ensure information security risks are managed in alignment to our business goals across TUI Group.
Information Security Officer is a senior leadership role (a member of the GRC Leadership Team), responsible for overseeing and supporting the application of TUI’s Information Security management framework across the Group. Providing leadership, governance and a risk-based approach in managing security within specific areas of our business. You will partner with our business and technology leaders to deliver visibility and effective management of Information Security.
ABOUT OUR OFFER
- Personal benefits: Attractive remuneration, bonus opportunity, exclusive travel perks & discounts, extensive health & wellbeing support, and more.
- Flexible working: Work is something you do, not somewhere you go. We encourage a healthy work-life balance and offer hybrid or remote working models.
- A career to shape: Opportunities to upskill, reskill and grow your career. Access the TUI Tech Learning Hub to level-up and reach your ambitions.
- Expand your horizons: Participate in our tech communities and collaborate on global projects and teams.
- Community: Get involved with incredible local charity and sustainability initiatives like the TUI Care Foundation and the Sustainable Tech Community.
ABOUT THE JOB
- As an Information Security Officer, you will promote and inspire a security first culture at TUI.
- You will direct the development, implementation, delivery and support of an enterprise Information Security strategy aligned to the strategic requirements of the business.
- Lead the provision of Information Security resources expertise, guidance and systems necessary to execute strategic and operational plans across all of the organisation’s information systems.
- Ensure that each Domain is motivated and empowered to deliver the prioritised roadmap. This will include protecting the TUI brand and its customers, detecting and responding to incidents, strengthening our defences, reducing the attack surface and securing our behaviours.
- You will have extensive business knowledge and understand the impact of emerging practices and technologies.
- Drive adoption of and adherence to security policies, standards and controls through the provision of expert advice and guidance.
- Protect our most critical assets and ensure appropriate assurance and rigorous testing is in place.
- You will ensure security incidents are managed effectively through engagement with the security operations team, and that lessons learned and audit findings are remediated. Ensure effective security operations (e.g. vulnerability scanning, patching).
- Protect the integrity, availability, authenticity, non-repudiation and confidentiality of information and data in storage and in transit.
- Manage risk in a pragmatic and cost-effective manner to ensure stakeholder confidence.
- You will report on the overall effectiveness of the security programme on each Domain against defined key performance indicators and drive continuous improvement.
- Our Information Security team works in collaboration with business and IT teams across our many businesses.
- You will build strong working relationships, explain and present complex ideas to audiences at all levels in a persuasive and convincing manner. Instil secure ways of working and influence others to do the right thing to Protect our Smile.
- You will also lead workstreams focussed on the development of the GRC team from a people, process and tooling perspective.
Security is part of everyone’s job. At TUI, we practise secure behaviours first in everything we do.
ABOUT YOU
- An experienced authentic leader with a good understanding of technology and managing Information Security risks in the enterprise.
- Passionate about Information Security, delivering business value and driving continuous improvement.
- Strong people leadership skills and experience in building a positive enabling security culture based on trust, quality and pragmatic risk management.
- Great communicator and influencer comfortable working across hierarchical, organisational, cultural and market boundaries.
- Experience of managing teams, mentoring and developing security talent from different cultural backgrounds.
- Professionally qualified holding a recognised security accreditation (CISSP/CISM/CISA etc.,) or equivalent experience with demonstrable Continuous Professional Development.
- Maintain a good understanding of latest security threats and the mitigating strategies.
- Ability to provide advice and guidance on security strategies to manage identified risks and ensure adoption and adherence to standards.
- Experience of the implementation, operation and maintenance of an Information Security Management framework such as ISO27001 or NIST CSF.
- Good understanding of integrating security into software or product development lifecycle and cloud security.
- Experience of securing Amazon Web Services workloads is desirable. Certification in cloud security or architecture a nice-to-have.
- Good understanding of the international regulatory context, particularly data privacy.
- Good understanding of technology standards and control frameworks such as CIS, NIST, PCI, OWASP, ITIL and COBIT.
- Adept at articulating IT security and technical issues to technical and non-technical audiences in a clear and actionable manner.
- Experienced at gaining commitment at business unit board level.
- Strong commercial acumen when taking actions or making decisions.
- Open minded, inquisitive, life-long learner.
- Comfortable with ambiguity, highly autonomous.
From a workplace to a place to belong. At TUI we embrace diversity, equity, and inclusion, encouraging everyone to come as you are, because together, our potential is limitless.
We are committed to supporting candidates with disabilities and impairments so if you require any support, please do let us know.
-
Career Areas | Jobs & Careers at TUI Within our TUI career areas, we are creating unforgettable experiences every day. Check out our teams, what they do and who they are here.
-
About TUI I Jobs & Careers at TUI Learn more about TUI. We are a leading global travel and leisure experience company that makes holiday dreams come true for people around the world.
-
The best team in travel | Jobs & Careers at TUI For us "Let's TUI it" we means tackling challenges together, and finding solutions with a can-do attitude. See here what makes us the best team in travel.
-
-
-
Contact us | | Jobs & Careers at TUI Here you will find the recruitment teams within TUI who are happy to help with your queries.
-
FAQ
-
-
-
Cruise We power an impressive fleet of 16 cruise ships spanning three dynamic brands. Teams of passionate individuals not only setting the stage on board, but also behind the scenes at our vibrant head offices where we craft unforgettable memories for our guests.
-
Retail and Contact Centres Whether you’re engaging with our clients through our digital channels or offering personalised service in one of our 1,600+ retail stores across Europe, your role is pivotal in crafting unforgettable holidays.
-
Early careers Whether with an apprenticeship, a dual study program or an internship, we offer you a great variety of early career opportunities to start your journey with TUI.
-
Engineering & maintenance Having safe and reliable aircraft available when and where we need them is fundamental to delivering the excellent customer experience we’re famous for, and that all starts with our Engineering & Maintenance teams.
-
Airline Working for TUI in our Airline offers you a job like no other. Our passion is delivering unforgettable experiences for our customers. Our people make this happen.
-
-
-
-
Cookie Notice | Jobs & Careers at TUI Your privacy is important to us. Here you will find all the information about what cookies are, how we use them and your choices when it comes to cookies.
-
-
-
-
-
-
Hotels & resorts The world is yours to explore at TUI. Join us for your dream career across our global destinations, where every role promises unforgettable experiences and a chance to leave a lasting impact on our guests worldwide.
-
-
Cabin Crew
-
-
-
-
-
How we hire At TUI we want to make your journey as a candidate as simple and transparent as we possibly can. We truly believe that your application to join TUI should be as exciting as going on holiday. Learn more about our application process.
-
ux-ui Our team is dedicated to crafting the most immersive and seamless digital journey for our customers
-
-
-
-
-
-
Corporate operations Across Europe, Asia, and the Americas, TUI corporate roles all have one thing in common – a drive to give our customers a best-in-class leisure experience. You’ll be contributing to the success of our vision and values – whilst developing your own career path, too.
-
Digital, Tech, & Data | Agile Evolution Find out what agile working means at TUI and how our Scrum Masters work towards making TUI a fully agile company
-
-
-
-
-
Digital, Tech, & Data | Digital Product As the world's leading tourism group, we're driven by technological passion and expertise. Find out how our Digital Products allow us to do just that.
-
Digital, Tech, & Data | Information Security Within our Information Security community of practice you will perform a crucial role in protecting our IT organisation.
-
-
-
Digital, Tech, & Data | Data Solutions Architecture Discover the Power of Data Solution Architecture at TUI Tech and unleash the business IT needs
-
Tech, Digital & Data TUI is influencing and shaping the digital world of travel which requires the latest and most innovative technologies, tools, systems and working methods. Explore careers in digital, tech & data.
-
Digital, Tech, & Data | Data Analytics, Engineering and Science Explore TUI's Data Analytics, Engineering and Science to discover how we leverage data-driven insights to transform the travel industry.
-
Digital, Tech, & Data | Machine Learning and Automation Join our team to study, implement ML algorithms, and develop innovative machine learning applications.
-
Digital, Tech, & Data | Meet our Colleagues Meet TUI's Tech and Data Science Team: Discover how our people-driven culture, built on trust, transparency, and a test-and-learn mindset, sets us apart.
-
Retail Opportunities With over 1,600 retail stores across Europe, you will help to create unforgettable holidays for all of our customers with your personality, professionalism and personalised service. As the first point of contact for many of our customers, we are looking for dedicated people with a passion for travel and customer service.
-
Digital, Tech, & Data | What we do Discover how our dedicated IT teams at TUI drive digital transformation and ensure seamless processes
-
Digital, Tech, & Data Explore TUI's Software Development, API, and DevOps expertise and discover how we leverage cutting-edge technologies
-
-
Digital, Tech, & Data | Solutions Architecture Join TUI's Solution Architecture team, where you'll steer the course of our integration solutions
-
-
-
Come as you are. We know people are as diverse as the destinations we send our customers to. Just as travel is about exploration, we are on a journey to make our work culture more inclusive. This is how we do diversity and inclusion at TUI...
-
-
-
-
-
-
-
Entertainment Travel the world and do what you love – and join an award-winning team as part of the deal. We’ve picked up a few gongs at the Wave Awards, the cruise world’s answer to the Oscars. So fair to say we pride ourselves on the high-calibre entertainment programme we host onboard.
-
-
-
Destination Services These ‘Makers of Happy’ are our onboard experts, helping to create unforgettable experiences for our customers. From organising activities and tours, to advising on the best places to go independently, our team ensure our customers make the most of their precious time ashore in the culture-packed and diverse destinations we visit.
-
-
-
-
-
-
-
-
-
-
-
-
You could be here!
Explore LocationQuestions about the job?
I'm happy to answer them.
Email: angels.rossello@tui.com
Please note: For enquiries only. Applications are only accepted online.
Jobs for you
-
Senior Frontend Software Engineer (Vue.js)Barcelona, ESP, Milan, IT; Oporto, PT; Sevilla, ES; Flexible View role
-
Cloud EngineerPalma de Mallorca, ESP, Madrid, ES; Flexible View role
-
Business Analyst - 12 Month FTCLisbon, PRT, Flexible View role
-
Senior Frontend Software Engineer (Vue.js)Madrid, ESP, Barcelona, ES; Oporto, PT; Valencia, ES; Flexible View role