Our executive search firm is partnering with a leading international pharmaceutical company headquartered in Barcelona to appoint an Information Security Associate Director to further strengthen its global cybersecurity capabilities within a complex, industrial and highly regulated environment.
Role Overview
The Information Security Associate Director will provide a global, integrated and mature view of cybersecurity across the organisation, bridging IT security and industrial OT security. The role acts as a senior internal reference, supporting informed, risk based decision making and contributing to the secure enablement of digital and industrial transformation.
This is a senior, transversal position with strong exposure to executive stakeholders, focused on influence, coordination and prioritisation rather than traditional line management.
Key Responsibilities
* Contribute to the design and deployment of cybersecurity plans with a primary focus on IT, while maintaining an integrated view with industrial and OT security.
* Lead complex, cross functional cybersecurity initiatives, ensuring effective governance, prioritisation and delivery.
* Provide a holistic view of cybersecurity risk, connecting technology, processes, people and business impact.
* Act as a key interface with senior stakeholders across IT, Industrial, Legal, Compliance and external cybersecurity partners.
* Support the definition of cybersecurity priorities, budgets and the security roadmap.
* Provide strategic leadership for the OT Security programme across manufacturing sites.
* Oversee external Technical Assurance services, including prioritisation, audits, reporting and stakeholder management within IT.
* Partner closely with IT Infrastructure and Operations, with hands on understanding of IT Infrastructure (AD, Networking, Cloud infrastructure) and Security components (EDR, AV, FW, etc).
* Advise on Security Operations and incident response, supporting the SOC and internal service owner.
* Design and deliver cybersecurity awareness initiatives, training sessions and executive briefings.
Requirements
The successful candidate will demonstrate a strong combination of cybersecurity expertise, strategic judgement and senior stakeholder management capability.
Key requirements include:
* 10+ years of professional experience in the cybersecurity domain, with exposure to senior or leadership level responsibilities.
* Strong global understanding of enterprise IT environments and IT security.
* Solid foundational knowledge of OT security and industrial environments, with an understanding of IT and OT interdependencies.
* Experience contributing to the design or deployment of cybersecurity or information security programmes.
* Proven ability to influence senior stakeholders and operate effectively in matrixed organisational structures.
* Hands on exposure to security systems and security operations, with the ability to clearly translate technical risks into business relevant insights.
* University degree in a relevant discipline.
Experience in regulated or industrial environments, international contexts or OT security initiatives will be considered an advantage.
Why This Opportunity
* Senior, high visibility role within a global pharmaceutical organisation.
* Direct exposure to executive stakeholders and strategic decision making.
* Opportunity to shape cybersecurity across both IT and industrial environments.
* Transversal role focused on influence and impact rather than traditional line management.
If this opportunity aligns with your experience and career aspirations, we encourage you to apply.