< Back to search

TUI Group • Lisbon, PRT, Oporto, PT; Flexible;

Information Security Manager

Employment type:  Full time

< Back to search

top 3 scores:
88%

Location flexibility

81%

Autonomy

80%

Hours flexibility

Apply now

Job Description

TUI Group is the world’s number one integrated tourism business. Information Security is a global team within TUI technology responsible for maintaining and continuously improving security across TUI. We are a multi-disciplinary team of experts across Governance, Risk and Compliance (GRC), Architecture, Engineering and Delivery providing services across the UK, Ireland, Sweden, Norway, Denmark, Finland, Spain, Germany, Belgium and The Netherlands.

We never stop looking ahead, seeking new ways to delight our customers and grow our business. We recognise the power of digital and the massive contribution this brings to creating a truly unique and differentiated customer experience.

We are looking for a talented and dedicated leader to join the Information Security team supporting the information security programme across multiple Technology Domains. As an Information Security Manager within our GRC team you will perform a crucial role in protecting our IT organisation.

ABOUT OUR OFFER

  • Personal benefits: Attractive remuneration, bonus opportunity, exclusive travel perks & discounts, extensive health & wellbeing support, and more.
  • Flexible working: Work is something you do, not somewhere you go. We encourage a healthy work-life balance and offer hybrid or remote working models.
  • A career to shape: Opportunities to upskill, reskill and grow your career. Access the TUI Tech Learning Hub to level-up and reach your ambitions.
  • Expand your horizons: Participate in our tech communities and collaborate on global projects and teams.
  • Community: Get involved with incredible local charity and sustainability initiatives like the TUI Care Foundation and the Sustainable Tech Community.

ABOUT THE JOB

  • As an Information Security Manager (ISM) you will promote a security first culture within your Domains.
  • You will contribute to the creation, iteration and maintenance of an information security programme to address the evolving business risk and empower the Domains to deliver a prioritised roadmap.
  • You will lead the collaboration with stakeholders to communicate and embed secure ways of working. This will include protecting the TUI brand and its customers, detecting and responding to incidents, strengthening our defences, reducing the attack surface and securing our behaviours.
  • Drive adoption of and adherence to security policies, standards, and controls through the provision of expert advice and guidance.
  • Help protect our most critical assets and ensure appropriate assurance and rigorous testing is in place.
  • Track lessons learned from security incidents and drive the remediation of audit findings within the domain.
  • Ensure that security controls are effective (e.g. vulnerability scanning, patching).
  • Protect the integrity, availability, authenticity, non-repudiation and confidentiality of information and data in storage and in transit.
  • Manage risk in a pragmatic and cost-effective manner to ensure stakeholder confidence.
  • Report on the overall effectiveness of the security programme in the Domains against defined key performance indicators and drive continuous improvement.
  • Our information security team works in collaboration with business and IT teams across our many businesses. You will build strong working relationships and influence others to do the right thing to Protect our Smile.
  • Security is part of everyone’s job. At TUI, we practise secure behaviours first in everything we do.

ABOUT YOU

  • Demonstrable experience of leading an information security capability (or ISMS) and governance, risk and compliance activities for a large business unit.
  • Strong communication and influencing skills and ability to adapt to different businesses/stakeholders. Experienced at gaining commitment at business unit board level.
  • Experience in dealing with Customer and Data security and good knowledge related to cloud (AWS / GCP is a plus) and on-premises technologies.
  • Keen to learn new technologies and able to apply them in the daily work (AI & GenAI)
  • Adept at assessing maturity and delivering improvements.
  • CISSP/CISM/CISA certified preferred.
  • Good understanding of the international regulatory context, particularly data privacy.
  • Good understanding of standards and frameworks such as ISO27001, NIST, PCI, OWASP, ITIL and COBIT.
  • Excellent planning and organisation skills to determine effective course of action.
  • Excellent interpersonal skills to work with technical and non-technical colleagues around the world.
  • Goal orientated to maintain focus on agreed objectives and deliverables.
  • Problem solving skills to identify creative and elegant solutions.
  • Strong commercial acumen when taking actions or making decisions.
  • Good organisational awareness. Able to identify the decision makers and influencers.
  • Ability to understand the needs, objectives, and constraints of those in other teams.

From a workplace to a place to belong. At TUI we embrace diversity, equity, and inclusion, encouraging everyone to come as you are, because together, our potential is limitless.


We are committed to supporting candidates with disabilities and impairments so if you require any support, please do let us know.

#TUIjobs #LI-AR1 #LI-Remote

Company benefits

Travel credit – All benefits vary by location and job role, we'd be happy to chat to you about this in more detail
Work from anywhere scheme – TUI WORKWIDE means colleagues can work from abroad for up to 30 working days a year
Employee discounts
Flexible working week
Bank holiday swaps
Time off in-lieu
Religious celebration leave
Buy or sell annual leave
Health insurance
Gym membership
Open to part time work for some roles
Mental health platform access
Enhanced maternity leave
Shared parental leave
Pregnancy loss leave
Enhanced paternity leave
Compassionate leave
Cinema discounts
Travel insurance
Cycle to work scheme
In office catering
Annual pay rises
Annual bonus
Life assurance
Salary sacrifice
In office workout classes
Teambuilding days
Employee assistance programme
Charity donation scheme
Enhanced sick pay
Share options
Faith rooms
Volunteer days
Lunch and learns
Hackathons
L&D budget
Sabbaticals
Personal development days
Mental health days
Travel loan
Enhanced pension match/contribution

We asked employees of TUI Group what it's like to work there, and this is what they told us.

Location flexibility
88%
Employees are very happy with their working location freedom
Hours flexibility
80%
Employees are largely happy with the flexibility in the hours they work
Benefits
76%
Employees are largely happy with the benefits their company offers
Work-life balance
72%
Employees feel that they can switch off quite easily from work
Role modelling
76%
Employees feel that most people work flexibly
Autonomy
81%
Employees feel they have complete autonomy over getting their work done

Additional employee ratings
(these do not contribute to the FlexScore®)

Diversity
70%
Employees feel that the diversity is good and there are continued efforts to improve it
Inclusion
75%
Employees feel that the culture supports equity and inclusivity well
Culture
80%
Employees enjoy the working environment
Mission
75%
Employees feel quite excited about the company mission
Salary
52%
Employees feel that their salary is fair and in line with the market average

Working at TUI Group

Company employees

60,000 globally

Gender diversity (male:female)

80:20

Currently Hiring Countries

Aruba

Australia

Austria

Belgium

Bulgaria

China

Costa Rica

Croatia

Curaçao

Cyprus

Dominican Republic

France

Germany

Greece

Hong Kong

Indonesia

Ireland

Italy

Jersey

Mexico

Netherlands

Portugal

Slovenia

Spain

Sweden

Switzerland

Thailand

Tunisia

Türkiye

United Kingdom

Office Locations

Awards & Achievements

Most flexible companies

Most flexible companies

Flexa100 2024

Other jobs you might like