.TUI Group is the world's number one integrated tourism business. Information Security is a global team within TUI technology responsible for maintaining and continuously improving security across TUI. We are a multi-disciplinary team of experts across Governance, Risk and Compliance (GRC), Architecture, Engineering and Delivery providing services across the UK, Ireland, Sweden, Norway, Denmark, Finland, Spain, Germany, Belgium and The Netherlands.We never stop looking ahead, seeking new ways to delight our customers and grow our business. We recognise the power of digital and the massive contribution this brings to creating a truly unique and differentiated customer experience.We are looking for a talented and dedicated leader to join the Information Security team supporting the information security programme across multiple Technology Domains. As an Information Security Manager within our GRC team you will perform a crucial role in protecting our IT organisation.ABOUT OUR OFFER Personal benefits : Attractive remuneration, bonus opportunity, exclusive travel perks & discounts, extensive health & wellbeing support, and more. Flexible working : Work is something you do, not somewhere you go. We encourage a healthy work-life balance and offer hybrid or remote working models. A career to shape : Opportunities to upskill, reskill and grow your career. Access the TUI Tech Learning Hub to level-up and reach your ambitions. Expand your horizons: Participate in our tech communities and collaborate on global projects and teams. Community : Get involved with incredible local charity and sustainability initiatives like the TUI Care Foundation and the Sustainable Tech Community. ABOUT THE JOB As an Information Security Manager (ISM) you will promote a security first culture within your Domains. You will contribute to the creation, iteration and maintenance of an information security programme to address the evolving business risk and empower the Domains to deliver a prioritised roadmap. You will lead the collaboration with stakeholders to communicate and embed secure ways of working. This will include protecting the TUI brand and its customers, detecting and responding to incidents, strengthening our defences, reducing the attack surface and securing our behaviours. Drive adoption of and adherence to security policies, standards, and controls through the provision of expert advice and guidance. Help protect our most critical assets and ensure appropriate assurance and rigorous testing is in place. Track lessons learned from security incidents and drive the remediation of audit findings within the domain. Ensure that security controls are effective (e.G. vulnerability scanning, patching). Protect the integrity, availability, authenticity, non-repudiation and confidentiality of information and data in storage and in transit. Manage risk in a pragmatic and cost-effective manner to ensure stakeholder confidence