Global IT Security Lead (m/f/d)

At Hero, we value our people as the core of our success. As a global leader in natural and healthy food products, we foster an open, innovative work environment where employees are encouraged to make a real impact. Our values – Create Wow, Everyone Hero, Nourish Others, and Take Responsibility – reflect our commitment to nurturing talent and promoting a collaborative, inclusive culture. Joining Hero means becoming part of a mission-driven company that prioritizes sustainability, quality, and the well-being of both its employees and consumers.

We’re looking for a

Global IT Security Lead (m/f/d)

who combines strategic thinking with a builder’s mindset. In this role, you’ll take ownership of our global information security model, guiding its rollout across a diverse group of international entities , ensuring compliance with legal requirements ( e.g. NIS2) . This is a high-impact role for someone who thrives on shaping practical, business-aligned security that works in the real world.

This is what you can expect

• Lead Cybersecurity Maturity Across the Group : Drive the implementation of the security framework across a diverse group of international entities, aligning cybersecurity efforts with business goals and varying maturity levels
• Own and Evolve the Information Security Model : Take full ownership of the Hero Information Security model, acting as the central point of contact and trusted advisor for all information security matters across the organization.
• Oversee Risk Assessments and Governance : Ensure all entities conduct regular risk assessments and maintain momentum in the PDCA (Plan-Do-Check-Act) cycle, embedding structured, repeatable risk management practices while ensuring alignment with relevant compliance requirements ( i.e. NIS2).
• Build and Shape a Scalable Security Function : Design and develop a practical, business-aligned security function from the ground up—ideal for someone who enjoys building with purpose and clarity.
• Collaborate Across Functions and Borders : Work closely with local CFOs, IT managers, and Group IT to embed cybersecurity into daily operations and strategic planning—adapting communication style fluidly to suit both executive and technical audiences.
• Promote a Culture of Security Awareness : Champion security awareness across the organization by driving training, communication, and engagement initiatives that foster a proactive, risk-aware mindset.
• Drive Reporting and Accountability : Consolidate cybersecurity reporting from all entities, ensure timely and accurate delivery, and translate findings into clear, actionable insights for leadership .

This is what you need to be successful in this role

• Bachelor\’s degree in Computer Science, Information Technology, or a related field and or equivalent experience
• Relevant certifications such as CISSP, CISM, CRISC, or ISO 27001 Lead Implementer/Auditor are highly desirable
• Demonstrated experience leading cybersecurity maturity initiatives using frameworks like NIST or ISO 27001
• S trong background in risk management, including oversight of risk assessments and embedding the PDCA cycle into operational routines
• Experience with regulatory compliance ( e.g. NIS2, GDPR) and translating requirements into practical, business-aligned controls
• Proven ability to communicate fluidly across stakeholder levels—from CFOs to hands-on IT teams—adapting style and content to suit the audience
• Track record of building or shaping security functions in evolving or greenfield environments
• Comfortable working independently while laying the foundation for future team growth and leadership
• Experience in international or federated organi s ations with varying levels of cybersecurity maturity
• Strong reporting and analytical skills, with the ability to consolidate and communicate insights clearly to leadership.

This is what we offer

• At our company, people come first: You are important.
• An honest, collaborative atmosphere and a positive outlook on the future shape our daily work
• A supportive and inclusive work environment is crucial to us
• We offer a competitive salary and benefits package
• And professional development opportunities

We are looking forward to hearing from you!

By the way, just be yourself during the application process, as this helps us see if we are a good fit. We embrace diversity and welcome all applicants: Regardless of where you come from, how old you are, which gender you identify with, what you believe in, and who you love.

#J-18808-Ljbffr