Job Description

Job Title Principal Specialist - Information Security Main responsibilities: Colloaborative:

• Represent the security office in the RnD organisation.
• Works with development and architect teams to propose solutions that follow the Amadeus standards.
• Communicate with BISO/TISO to present solutions and maintain the risk register and mitigation plans.
• Coordinate the elaboration, update, publishing and promotion of the Internal IT security architecture and its strategy.
• Provide consultancy, guidance and support in Internal IT security architecture to other departments.
• Ownership of the reporting and governance tasks for SDL and for compliance programs.
• Own the security epic in the SAFE train if applicable
• Drive threat modelling exercises for the applications in their scope, together with the TISO office security managers.
• Provide second level support to White Hats for security-related aspects.
• Promote coding best practices together with the White hats

Leading:

• Ownership of the reporting and governance tasks for SDL and for compliance programs.
• Own the security epic in the SAFE train if applicable
• Drive threat modelling exercises for the applications in their scope, together with the TISO office security managers.
• Provide second level support to White Hats for security-related aspects.
• Promote coding best practices together with the White hats
• Contribute to Internal IT security governance processes definition.
• Contribute to global security risk analysis: conduct, coordinate or support security related Risk Analysis management process.
• Contribute to Internal IT security awareness promotion.

Main stakeholders:

• Delivery and Support Teams
• Product Development Teams

Other stakeholders:

• Heads of departments
• Sales Teams
• Client Project Managers
• Client Delivery Team

Essential work experience

• Experience in implementing Single Sign On on new and existing systems.
• Experience in implementing Multifactor Authentication on new and existing systems.
• Experience in implementing Privileged Access Managment systems
• Experience with IT security design and assessment.
• Experience working with cloud and on prem data centres.
• Working with Windows and Linux systems

Working on access management systems for a large suite of systems and applications. Desirable but not essential experience:

• Working with Amadeus systems
• Working with systems related to the aviation industry especially in the area of passenger processing

Skills:

• AWS, IT Security, Identity Management
• Knowledge and experience on any programming platform, preferably C#
• Strong verbal, written and presentation skills with an adept ability to articulate in both technical and business language
• Strong interpersonal skills with an ability to motivate others and gain buy in from key stakeholders.
• Ability to collaborate with multiple teams
• A self-starter, with a