Global Director of IT Security

We have an exclusive mandate from

• gategroup to search and select the Global Director of IT Security.

This is a unique career opportunity to join a global player in the aviation industry and to make impactful changes in the company and in the aviation industry.

• The Company

gategroup is the global leader in airline catering, retail-on-board, and hospitality products and services. In 2019, gategroup reached CHF 5.0 billion in revenues generated by approximately 43,000 employees worldwide.

• Your mission
• Challenge, guide, and support the leadership of the Cyber Security department in delivering the best possible IT Security solutions to gategroup.
• Ensure that the roadmap for future security technologies focuses on the right priorities and is understood and adopted across the company.
• Serve as Subject Matter Expert on various Application, Infrastructure, and Enterprise Security topics.
• Partner with leaders across the organization and lead the journey for a Security and risk program for the company.
• Be hands-on and ensure operational risk management efficiencies across the enterprise, with target industry regulations including PCI, SOX, GDPR, and CCPA.
• Main Duties and Tasks
• Create, manage, and motivate a security team to cover worldwide security requirements and incidents.
• Develop, plan, implement, and oversee an enterprise security program and roadmap.
• Ensure continuity of security controls.
• Establish a vision for governance and reporting.
• Develop an ERM program.
• Support the implementation and ongoing management of the corporate risk framework for standards and practices.
• Lead the security incident detection and response program with a hands-on attitude and monitoring solutions.
• Maintain a working knowledge of SOX, PCI DSS, GDPR, and CCPA.
• Develop and implement information security and disaster recovery programs in accordance with organizational standards.
• Your Qualifications
• Deep understanding of the market landscape for enterprise technology solutions.
• Experience managing vendor relationships and contract administration with a focus on performance.
• Ability to drive the IT security strategy forward, thriving on change.
• Expert knowledge of legacy and emerging technology landscapes.
• Understanding of key infrastructure technologies and architectural considerations.
• Education
• Bachelor’s degree or an equivalent combination of education and experience.
• Work Experience
• 10+ years of experience in designing, delivering, or managing information security services at an enterprise level.
• Technical hands-on experience across security domains.
• Experience in planning, implementing, and testing security controls.
• Effective organizational skills with attention to detail and change management ability.
• Technical Skills
• Knowledge of legal and regulatory requirements such as Export Control regulations and GDPR.
• Strong understanding of security frameworks like ISO27001, CoBIT, CIS, and ITIL.
• Hands-on experience in infrastructure security, including network security, firewall security, data infrastructure, and applications (optional).
• Good understanding of risk management, security audits, and policy setting.
• Experience with operations process KPIs.
• Optional familiarity with Dynamics 365.
• Communication Skills
• Ability to communicate security concepts effectively to both technical and non-technical audiences.
• Self-motivated with a commitment to excellence.
• Job Dimensions
• Global geographic responsibility.
• Full-time employment.
• 3-5 direct reports, with an estimated team size.
• International travel up to 30% (not mandatory).
• Internal relationships include management levels, peers, and business customers.
• External relationships include vendors, business partners, and technology consultants.