Global IT Security Lead (m/f/d)

At Hero, we value our people as the core of our success. As a global leader in natural and healthy food products, we foster an open, innovative work environment where employees are encouraged to make a real impact. Our values - Create Wow, Everyone Hero, Nourish Others, and Take Responsibility - reflect our commitment to nurturing talent and promoting a collaborative, inclusive culture. Joining Hero means becoming part of a mission-driven company that prioritizes sustainability, quality, and the well-being of both its employees and consumers.

We’re looking for a

Global IT Security Lead (m/f/d)

who combines strategic thinking with a builder’s mindset. In this role, you’ll take ownership of our global information security model, guiding its rollout across a diverse group of international entities, ensuring compliance with legal requirements (e.g. NIS2). This is a high-impact role for someone who thrives on shaping practical, business-aligned security that works in the real world.

This is what you can expect

• Lead Cybersecurity Maturity Across the Group: Drive the implementation of the security framework across a diverse group of international entities, aligning cybersecurity efforts with business goals and varying maturity levels
  
  
• Own and Evolve the Information Security Model: Take full ownership of the Hero Information Security model, acting as the central point of contact and trusted advisor for all information security matters across the organization.
  
  
• Oversee Risk Assessments and Governance: Ensure all entities conduct regular risk assessments and maintain momentum in the PDCA (Plan-Do-Check-Act) cycle, embedding structured, repeatable risk management practices while ensuring alignment with relevant compliance requirements (i.e. NIS2).
  
  
• Build and Shape a Scalable Security Function: Design and develop a practical, business-aligned security function from the ground up—ideal for someone who enjoys building with purpose and clarity.
  
  
• Collaborate Across Functions and Borders: Work closely with local CFOs, IT managers, and Group IT to embed cybersecurity into daily operations and strategic planning—adapting communication style fluidly to suit both executive and technical audiences.
  
  
• Promote a Culture of Security Awareness: Champion security awareness across the organization by driving training, communication, and engagement initiatives that foster a proactive, risk-aware mindset.
  
  
• Drive Reporting and Accountability: Consolidate cybersecurity reporting from all entities, ensure timely and accurate delivery, and translate findings into clear, actionable insights for leadership. 

This is what you need to be successful in this role

• Bachelor's degree in Computer Science, Information Technology, or a related field and or equivalent experience
• Relevant certifications such as CISSP, CISM, CRISC, or ISO 27001 Lead Implementer/Auditor are highly desirable
• Demonstrated experience leading cybersecurity maturity initiatives using frameworks like NIST or ISO 27001  
• Strong background in risk management, including oversight of risk assessments and embedding the PDCA cycle into operational routines
• Experience with regulatory compliance (e.g. NIS2, GDPR) and translating requirements into practical, business-aligned controls
• Proven ability to communicate fluidly across stakeholder levels—from CFOs to hands-on IT teams—adapting style and content to suit the audience
• Track record of building or shaping security functions in evolving or greenfield environments
• Comfortable working independently while laying the foundation for future team growth and leadership
• Experience in international or federated organisations with varying levels of cybersecurity maturity
• Strong reporting and analytical skills, with the ability to consolidate and communicate insights clearly to leadership. 

This is what we offer

• At our company, people come first: You are important.
• An honest, collaborative atmosphere and a positive outlook on the future shape our daily work
• A supportive and inclusive work environment is crucial to us
• We offer a competitive salary and benefits package
• And professional development opportunities
  
  

We are looking forward to hearing from you!

By the way, just be yourself during the application process, as this helps us see if we are a good fit. We embrace diversity and welcome all applicants: Regardless of where you come from, how old you are, which gender you identify with, what you believe in, and who you love.