Senior Information Security GRC AnalystFlexibel; Madrid, Spanien; Barcelona, Spanien; Lissabon,[...]

Job Description:

ABOUT THE JOB

As a Senior Information Security GRC Analyst, you will manage, deliver, and track actions related to assurance and compliance programmes. You should have practical experience with regulatory compliance activities such as GDPR and be able to oversee the delivery and tracking of compliance actions.

This role involves identifying gaps in policies and standards across the company and delivering regular reports to senior stakeholders to support decision-making and investment. You will help TUI meet its strategic goals by:

• Managing and reporting on assurance and compliance programmes' status and performance.
• Overseeing the operation of TUI’s application assurance and cyber resilience programmes.
• Prioritising and managing workload within the GRC team.
• Managing documentation workflows, including policy and standards development, liaising with stakeholders, and publishing documents.
• Supporting the wider GRC team and subject matter experts.
• Developing and maintaining roadmaps for compliance and standards.
• Building expertise to support delivery against standards.
• Managing and maturing the CMDB of compliance assets.

Our team collaborates across business and IT units to ensure security and compliance, fostering strong relationships and influencing others to protect our Smile.

ABOUT YOU

• Experience managing compliance or assurance activities in large travel, web, or retail organizations.
• Strong prioritization skills for handling diverse tasks.
• Excellent communication skills, both written and oral, with the ability to produce clear documentation in English.
• Organizational skills and attention to detail.
• Experience with Information Security Audits.
• Knowledge of ISO27001, GDPR, and related legislation.
• Influencing and interpersonal skills, including persuasiveness and assertiveness.
• Security qualifications (e.g., CISM, CISSP, Security+) or equivalent are a plus.
• Familiarity with standards such as NIST, OWASP, ITIL, COBIT.
• Ability to understand the needs of other teams and work collaboratively.

OUR OFFER

• Be part of TUI, the leading global travel company.
• Competitive salary and benefits.
• Flexible working hours and options for remote or hybrid work.
• Join a diverse, international team and develop your skills.

Learn more about TUI Group and our diversity initiatives at careers.tuigroup.com.