Senior Manager Information Security

Senior Manager Information Security

adidas

Zaragoza, Spain

KEY ACCOUNTABILITIES:

• Lead a team of Security Architects who will be core to delivering the following listed objectives;
• Establish target-state architectures of one or more of cloud, identity, network, application security, etc.;
• Align security architecture with business priorities and digital transformation initiatives;
• Drive adoption of modern frameworks (e.g., Zero Trust, cloud-native security);
• Lead architecture review boards (ARB) for new systems and major changes;
• Define and enforce security design standards, patterns, and reference architectures;
• Ensure consistency across regions, business units, and platforms;
• Develops and communicates corporate information security policies, standards, and guidelines, ensuring secure architectural principles across designs;
• Contributes to organizational strategies related to information control and evaluates environmental/market trends for risks, impacts, and opportunities;
• Provides authoritative security control guidance in collaboration with legal, technical, and other experts;
• Understands client needs, conducts analysis, recommends solution options, and facilitates stakeholder collaboration to ensure effective implementation;
• Maintains expert level knowledge in defined specialisms, provides advanced guidance, and consolidates expertise from multiple sources;
• Conducts and contributes to research activities, including data collection, report creation, publication, and presentation of findings;
• Monitors emerging technologies, assesses threats/opportunities, and produces reports and technology roadmaps.

WHAT WE ARE LOOKING FOR:

• College or university degree with focus on IT, or equivalent combination of education and experience;
• 7 years of IT experience, with 5 years of exposure to the relevant area;
• Strong interpersonal and communication skills. Proficient English skills (verbal and written);
• Deep experience in at least one of:
  • Cloud security (AWS, Azure, or GCP);
  • Identity & access management (IAM, SSO, federation, Zero Trust);
  • Application & API security;
  • Network security architecture;
  • Data & AI Security Architecture.
• Strong understanding in at least one of:
  • Threat modelling methodologies (STRIDE, etc.);
  • Secure SDLC practices;
  • Modern architectures (microservices, containers, serverless).
• Proactivity and “team player” attitude, with the ability to collaborate effectively;
• Growth mindset focused on continuous learning, improvement and adaptability to change;
• Passion for the latest technology and for delivering consumer/business value;
• Aptitude to learn and implement new technologies, with a hands on and problem solving approach.