This website uses cookies to ensure you get the best experience.

Aviator Group and our selected partners use cookies and similar technologies (together “cookies”) that are necessary to present this website, and to ensure you get the best experience of it. If you consent to it, we will also use cookies for analytics and marketing purposes.

See our Cookie Policy to read more about the cookies we set.

You can withdraw and manage your consent at any time, by clicking “Manage cookies” at the bottom of each website page.

 Skip to main content
Head Office Aviator

IT Governance & Compliance Manager

Join us and help shape the future of secure and compliant aviation operations

Aviator is strengthening its IT governance and compliance capabilities — and we are now looking for an IT Governance & Compliance Manager who will play a critical role in ensuring that our IT and OT environments remain secure, compliant, and resilient.

If you are passionate about structure, regulatory alignment, and driving real behavioural change across an organisation, this is a role where you can make a tangible impact.

About the Role

As our IT Governance & Compliance Manager, you will own the lifecycle of all IT and OT policies, standards, and risk management processes. You will ensure alignment with international standards and evolving EU regulations, while driving adoption across all business units.

You will collaborate closely with IT leadership, business units, external auditors, and regulators. The role is based at our Head Office at Stockholm-Arlanda or one of our regional offices, with some required on-site presence at the Head Office.

You will operate with a clear Group level mandate to define, enforce, and evolve IT and OT governance across Aviator.

You succeed in this role by combining regulatory depth with the ability to influence senior stakeholders and drive lasting behavioural change.

Key Responsibilities

  • Develop, implement, and maintain IT and OT governance policies, standards, and procedures aligned with ISO/IEC 27001, NIS2, GDPR, EU AI Act, CIR (EU) 2024/2690, and other applicable regulations.

  • Ensure localisation and adoption of Group-level governance frameworks in line with national requirements.

  • Own the IT and Cybersecurity risk management process, including maintaining the risk register, defining indicators, and driving remediation actions.

  • Plan, coordinate, and lead internal and external IT audits, ensuring findings are closed with evidence.

  • Oversee third-party and vendor risk management, including due diligence and contract reviews.

  • Govern business continuity and disaster recovery standards, plans, and testing.

  • Deliver and track role-based security and privacy awareness training.

  • Maintain a single source of truth for compliance documentation (preferably in a GRC platform).

  • Monitor and report compliance status, risks, and progress to IT Director and key stakeholders.

  • Act as the primary point of contact for auditors, regulators, and external parties.

  • Lead and drive adoption of IT and OT policies across all business units to ensure behavioural compliance and embed governance into daily operations.

Deliverables

You will be expected to deliver structured, visible outputs such as:

  • Annual IT Governance Plan outlining priorities and timelines.

  • Compliance dashboards (monthly/quarterly) tracking status and progress.

  • A maintained IT & OT Policy Catalogue with approved and updated policies and procedures.

  • Updated Risk Register & remediation follow-up with owners and deadlines.

  • Audit reports and closure evidence for internal and external audits.

Qualifications

  • Bachelor’s or master’s degree in Information Technology, Information Security, Law or a related field.

  • Minimum 5 years of experience in IT compliance, governance, or similar roles.

  • Proven experience developing and implementing governance frameworks, policies, and processes.

  • Strong experience in organisational change and behavioural adoption.

  • Deep understanding of ISO/IEC 27001, NIS2, GDPR, AI Act and other relevant EU standards/regulations.

  • Experience with risk management, audits, vendor risk, and BC/DR governance.

  • Excellent communication skills, able to explain complex topics in an accessible way.

  • Experience delivering security and privacy awareness training.

  • Experience with GRC platforms is an advantage.

  • Certifications such as CISM, CRISC, CISSP, CISA, or ISO 27001 Lead Auditor/Implementer are strong merits.

  • Fluency in English; proficiency in a Scandinavian language or in Finnish is an advantage.

Why Join Aviator?

Aviator operates across the Nordic region, supporting airlines with professional, safe, and reliable ground handling services. You will be part of a dedicated and friendly team that values integrity, collaboration, and continuous improvement.

This is an opportunity to step into a key strategic role and help shape the governance and compliance landscape of a company operating in a highly regulated and safety-critical industry.

Apply today and help strengthen our digital resilience.

We review applications and conduct interviews continuously — apply today!

Locations
Head Office Aviator

About Aviator Group

Aviator is the largest independent ground handling company in the Nordics, operating across 15 airports from Copenhagen to Tromsø.

Aviator offers airlines a package of services tailored to their needs and requirements. Our services include check‑in, baggage loading and unloading, lounge services, de‑icing, maintenance services, and more.

Aviator currently operates at airports in Sweden, Finland, Denmark and Norway.

Head Office Aviator

IT Governance & Compliance Manager

Loading application form

Applicant tracking system by Teamtailor