Location: Madrid, Spain.
\n
¿Tiene lo que se necesita para triunfar? La siguiente información debe ser leída atentamente por todos los candidatos.
\n
Property: Corporate.
\n
Objective
\n
At ABLiving, a integral luxury wellness and hospitality group with brands such as SHA Wellness Clinic, we are seeking a Manager of Strategy, Data & Security to serve as the strategic compass of our technology organization. Reporting directly to the CIO, you will be the architect of our digital future: responsible for aligning business strategy with the technology roadmap, fostering a data-driven decision-making culture, and protecting our digital assets and guest trust as a de facto CISO.
\n
Your mission will be to translate business vision into a coherent, secure, and data-driven technology ecosystem, leading initiatives in Artificial Intelligence, enterprise architecture, and cybersecurity.
\n
Rol purpose
\n
As Manager of Strategy, Data & Security, your role is to be the strategist who designs the roadmap, the data scientist who validates it with insights, and the protector who ensures the path forward. Responsible for ensuring that every initiative, platform, and technology decision not only addresses present needs, but also deliberately and securely builds the future required by our business strategy.
\n
Key Responsibilities
\n
- IT Strategy & Enterprise Architecture
\n
IT Strategic Planning: Translate the group's business strategy into a clear, prioritized, and funded technology roadmap. Lead the annual planning cycle and project portfolio management (PPM), ensuring alignment with corporate objectives and tracking ROI.
\n
Enterprise Architecture (EA): Own the enterprise architecture (applications, data, infrastructure, processes), ensuring a coherent, scalable, and sustainable model. Establish and chair the Enterprise Architecture Review Board (EARB).
\n
Technology Lifecycle Management: Oversee technology capabilities lifecycle, identify technical debt, manage obsolescence, and proactively plan ecosystem evolution.
\n
Innovation and \"AI-First\" Mindset: Lead adoption of emerging technologies, especially AI, to drive operational efficiencies and personalized guest experiences. Develop a responsible AI framework.
\n
Executive Reporting and Budgeting: Prepare strategic reports, feasibility analyses, and technology roadmaps. Participate in budgeting cycles and provide TCO/ROI analysis.
\n
- Data Governance & Business Intelligence
\n
Data Strategy & Governance: Design and implement the data governance framework, including policies, quality standards, data catalog, lineage, and stewardship model.
\n
Analytics & AI Platform: Lead the design and evolution of the data platform (data warehouse/lakehouse) and drive BI and AI/ML use cases across the business.
\n
Data Quality Management: Establish data quality metrics, monitor performance, and lead remediation plans to ensure reliable decision-making data.
\n
Data Privacy & Ethics: Ensure compliance with GDPR and equivalent regulations. Act as internal reference for data ethics and privacy-by-design.
\n
Data-Driven Culture: Promote a data-driven culture by enabling secure access to information and supporting evidence-based decision-making.
\n
- Cybersecurity & Compliance (Functional CISO)
\n
Cybersecurity Program: Design and oversee the cybersecurity program, including risk management, policies, incident response, and business continuity (BCP/DRP).
\n
Security Architecture: Define security standards and architecture, embedding Security by Design and overseeing IAM and Zero Trust principles.
\n
Risk Management & Regulatory Compliance: Ensure compliance with security and privacy regulations. Manage audits, remediation plans, and third-party risk.
\n
Vulnerability Management: Lead vulnerability scans, penetration testing, patch management, and risk-based remediation.
\n
Security Awareness & Training: Lead cybersecurity awareness programs across the organization.
\n
Security Incident Management: Oversee incident response, ensuring early detection, rapid response, and transparent communication.
\n
Your Contribution
\n
More than 7 years of experience in IT strategy, enterprise architecture, data governance, or cybersecurity roles, preferably in hospitality, wellness, clinical environments, or industries with high demands on customer experience and data privacy.
\n
Proven experience in developing IT strategic plans and managing portfolios of technology initiatives (PPM).
\n
Strong knowledge of enterprise architecture frameworks (TOGAF or equivalent) and data governance.
\n
Hands-on cybersecurity experience: risk management, security policies, incident response, and compliance with GDPR or equivalent regulations.
\n
Excellent executive communication skills: ability to translate complex