information security associate director

CORE RESPONSIBILITIES

• Reporting to the Information Security Senior Director, be a strategic partner to shape and enhance the enterprise Information Security Program, proactively identifying and closing strategic and operational gaps to enhance risk posture of the business.
• Lead the delivery of complex, cross-functional security initiatives with full accountability for program governance, including scope definition, budget ownership, executive steering, and change management across people, processes, and technology to ensure robust business outcomes.
• Manage strategic relationships with key stakeholders across technical teams and senior business leadership, ensuring alignment of security initiatives with enterprise priorities.
• Translate enterprise Information Security requirements into technically sound policies and controls that enable business objectives.
• Provide strategic leadership for the OT Security program across all manufacturing sites, ensuring protection of industrial control systems.
• Oversee the Technical Assurance service (external team): definition of priorities aligned to risk map, lead and oversee technical audits, reporting, stakeholder management within IT.
• Partner with IT Infrastructure and Operations: hands-on technical understanding of IT Infrastructure (AD, Networking, Cloud infrastructure) and Security components (EDR, AV, FW, etc).
• Advise on Security Operations and incident response, ensuring effective support to the SOC and strategic guidance to the internal service owner
• Design and deliver impactful awareness campaigns, training sessions and executive briefings to elevate security awareness across the organization.

REQUIRED EDUCATION AND EXPERIENCE

• University degree in a relevant discipline (e.g. scientific, economics, engineering).
• +10 years professional work experience in the cybersecurity domain in a senior manager role.
• Experience in manufacturing or industrial environments is highly desirable, particularly in leading OT security initiatives.
• Proven ability to influence leadership and executive levels and align cybersecurity with business strategy.
• Demonstrated experience in building and managing strategic partnerships with business leaders, IT, and external stakeholders.
• Proven experience working directly with security systems and operations, with the ability to clearly explain technical risks in a way that supports informed business decisions.

ID: 91880

Why work with Almirall?

We are a people-centric company where employees are at their best, patients and customer are at the heart of every decision, and our focus and agility allow us to deliver greater impact for all.

Additionally, for the 17th year in a row, we have been certified as Top Employer Spain, and also Top Employer Germany for the first time.

This strengthens our commitment to create a unique work environment that helps our employees to develop their skills to fullest and grow both professionally and as individuals.

We are delighted to have a great team that is proactive, innovative, and eager to transform the world of people with skin conditions.

We are proud of each one of our employees, their development, and growth: they are the success of the company.

Our purpose

"Transform the patients' world by helping them realize their hopes & dreams for a healthy life".

Our values

• Care: we listen & empathize, we value diverse perspectives & backgrounds and we help each other succeed.

• Courage: we challenge the status quo, we take full ownership and we learn from our success & failures.

• Innovation: we put the patient and customer at the center, we create novel solutions and we empower entrepreneurial mindsets.

• Simplicity: we act decisively and avoid over-analysis, we understand why before we act and we are agile & keep things simple.

At Almirall, it's all about people

#wearealmirall