Lead Security Architect

jobtome-all
Comunidad Valenciana
EUR 50.000 - 90.000
Descripción del empleo

Overview : WELCOME TO SITA We're the team that keeps airports moving, airlines flying smoothly, and borders open. Our tech and communication innovations are the secret behind the success of the world’s air travel industry. You'll find us at 95% of international hubs. We partner closely with over 2,500 transportation and government clients, each with their own unique needs and challenges. Our goal is to find fresh solutions and cutting-edge tech to make their operations run like clockwork. Want to be a part of something big? Are you ready to love your job? The adventure begins right here, with you, at SITA.

ABOUT THE ROLE & TEAM

Supporting the cyber security risk management Team Leader, the Senior Cybersecurity Risk Advisor will contribute to IT risk management practice within SITA EISO team by maintaining and enhancing the cybersecurity operational risk management framework. As part of the second Lines of Defense (2LoD), the Senior Cybersecurity Risk Advisor will support business front lines (1LoD) risks & controls self-assessment capability and provide objective review to business lines to develop acceptable risk treatment plans, monitor risk mitigation execution progress and reporting to steering committees.

WHAT YOU WILL DO

  1. Reviewing and improving the operational risk management framework to ensure that it is user-friendly and adds the maximum value for the organization and its management.
  2. Supporting the work of the governing body and senior managers in relation to operational risk (e.g., providing advice, guidance, expert opinion, etc.).
  3. Supporting the activities of the risk committee or equivalent, and monitoring the organization's operational risk profile and escalating any concerns about control weaknesses or exposures that exceed agreed appetite or tolerance limits.
  4. Working with risk owners to ensure that operational risk templates and procedures are implemented correctly (e.g., providing training, coaching, etc.).
  5. Maintain and improve the third-party risk management framework through its lifecycle, which includes the onboarding, ongoing monitoring, and offboarding requirements.
  6. Support the cybersecurity exception handling process, including the objective review of the risk owner progress to achieve compliance with SITA policies and standards.
  7. Support risk management KPIs / KRIs identification, trends analysis, and reporting.
  8. Document key findings, analysis, and recommendations in clear and concise reports for both technical and non-technical stakeholders.
  9. Navigate and work effectively across a complex, geographically dispersed organization.

Qualifications :

ABOUT YOUR SKILLS

  1. 5 to 10 years of information system / cybersecurity risk and control management experience, including risk identification, analysis, response, and remediation.
  2. Relevant certification desired: CISA, CISM, CISSP, CIA, CIPP, or related.
  3. Practical experience of assessing risks associated with third-party suppliers and reviewing assurance documents relating to security and IT controls provided by third parties (e.g., ISO 27001, SOC2 certifications, etc.).
  4. Practical experience of managing an IT exception handling process.
  5. Ability to influence and engage with risk owner and senior management.
  6. Ability to adapt quickly to changing priorities and demands.
  7. Demonstrate good learning attitude and attention to detail.
  8. Have good communication skills, team player and a continuous improvement mindset.
  9. Ability to communicate in a clear, concise, and persuasive manner to all levels of audience.
  10. University degree in computer science, management information system, business administration or a related field of study required.

NICE-TO-HAVE

  1. Experience in IT contract review is considered an asset.
  2. Working knowledge and/or hands-on experience with information security policy, procedures and standard development and improvement.
  3. Experience with GRC (Governance, Risk and Compliance) tools such as OneTrust, ServiceNow, Archer is considered an asset.

SITA’s workplace is all about diversity, many different countries and cultures are represented in our workforce. We collaborate in our impressive offices, embracing a hybrid work format. As part of our global benefits, we offer:

  1. Flex Week: Work from home up to 2 days/week (depending on your Team's needs).
  2. Flex Day: You may wish to flex your arrival time at the office to beat rush hours or leave earlier for personal commitments. We encourage open communication with your manager about your needs and routine.
  3. Flex-Location: Enjoy up to 30 workdays of benefits, anywhere in the world!
  4. Employee Wellbeing: Benefit from the Employee Assistance Program (EAP) provided by SITA, a yearly free service offering practical advice in various aspects of your life.
  5. Professional Development: Enhance your skills with our training platforms, inclusive of LinkedIn Learning!
  6. Competitive Benefits: Access competitive benefits tailored to the local market and your employment status.

SITA is an Equal Opportunity Employer and values a diverse workforce. In support of our Employment Equity Program, women, aboriginal people, members of visible minorities, and/or persons with disabilities are encouraged to apply and self-identify in the application process.

Security Architect • Barcelona, Kingdom Of Spain, ES

Obtenga la revisión gratuita y confidencial de su currículum.
Selecciona un archivo o arrástralo y suéltalo
TrustpilotStars
Calificado "Excelente" según las 15.279 reseñas
Avatar
Asesoramiento online gratuito
¡Mejora tus posibilidades de entrevistarte para ese puesto!
Adelántate y explora vacantes nuevas de Lead Security Architect en
Síguenos
JobLeads Youtube ProfileJobLeads Linkedin ProfileJobLeads Instagram ProfileJobLeads Facebook ProfileJobLeads Twitter AccountJobLeads Xing Profile
Empresa
Servicios
Recursos gratuitos
Ayuda

© JobLeads 2007 - 2025 | Todos los derechos reservados