Manager, Information Security GRC
Company: Amadeus
Location: San Jose
Posted on: May 9, 2024
Job Description:
Manager, Information Security GRC page is loaded Manager,
Information Security GRC Apply locations San Jose time type Full
time posted on Posted Yesterday job requisition id R17312 Job Title
Manager, Information Security GRC About the Business: The
Hospitality CISO Office consists of three teams of security
experts:SEC-HOS-GRC (Governance, Risk and Compliance)SEC-HOS-SOA
(Security Operations and Architecture)SEC-HOS-PGM (Program
Management) Together we---
- Build a solid security organization for the new Amadeus
Hospitality Business Unit with a unified security posture.
- Maintain compliance with applicable legislation, regulations,
and market dominant security standards, including the
implementation of new requirements.
- Continue education programs for Amadeus Hospitality personnel
so they understand their role in protecting information assets and
the consequences for failing to do so.
- Make our organization and products sufficiently resilient
against intentionaland unintentional bad behaviors,attacks, data
breaches and fraud. Summary of the role: The Manager Information
Security Governance, Risk & Compliance is the staff member of the
Hospitality Information Security GRC team (SEC-HOS-GRC).He or she
reports to the Director of the Hospitality Information Security GRC
and manages the Information Security, Governance, Risk & Compliance
and Data Privacy topics within the Hospitality Business Unit. In
this role you'll:
- Manage a selection of compliance programs, ensuring alignment
with industry standards and regulations, such as SOC 1-2, PCI DSS,
ISO 27001/ISO27701, GDPR, NIS2, CCPA/CPRA, etc. This, aligned with
business needs and a risk-based approach for the Hospitality
product line and Business Unit.
- Manage/coordinate compliance audits, assessments, and
certifications, coordinating with external auditors as needed.
- Ensure alignment with Amadeus Hospitality Missions &
Objectives, the HOS CISO vision, and the guidance provided by
Amadeus central.
- conduct risk assessments and identify potential threats and
vulnerabilities to our systems, data, and processes.
- Collaborate with internal stakeholders to develop risk
mitigation strategies and action plans.
- establish and maintain the information security governance
framework for Hospitality, incorporating risk management and
compliance requirements.
- Ensure that the designed implementation guidelines, policies
and procedures, derived from the Governance Framework are
communicated, understood and applied appropriately within Amadeus
Hospitality Business Unit.
- Provide support to the HOS-CISO and the Director of the HOS GRC
(Governance, Risk and Compliance) team with respect to the
interface with Legal, Security and Data Privacy Authorities.
Education:
- Bachelor's degree or higher and/or equivalent work
experience.
- CISA, CISM or similar industry certification(s) are
preferred"
- ISO27001 Lead Implementer certification preferred. About the
ideal candidate:
- 3+ years' experience working within an IT organization with
practical experience in compliance coordination, implementing IT
risk frameworks, controls, and methodologies.
- Exposure to international and multi-cultural contexts
- Prior experience working closely with auditors and/or external
regulators.
- Must possess excellent Organizational Skills, Proficient
Communication Skills, Effective Problem-solving skills, Strong
People Skills, Sound Understanding of Regulatory Guidelines and
Security Policies, willingness to learn and self-motivation. -
- Must be creative, a team player, passionate and enthusiastic
about the role.
- Ability to travel What we can offer you:
- Get rewarded with competitive -remuneration, individual and
company annual bonus, vacation and holiday paid time off, health
insurances and other competitive benefits.
- Work from anywhere: -onsite, hybrid or fully remote. -
- Professional development to broaden yourknowledge and enhance
your skillswith on-line learning hubs packed with technical and
soft skills training that allow you to develop and grow.
- Enter a diverse and inclusive workplace, join one of the
world's top travel technology companies and take on a role that
impacts millions of travelers around the globe. Application
process: - The application process takes no longer than 10
minutes!
Create your candidate profile, upload your Resume/CV and apply
today! Diversity & Inclusion We are an Equal Opportunity Employer
and seek to hire the best candidate regardless of age, beliefs,
disability, ethnicity, gender or sexual orientation. About Us
#J-18808-Ljbffr
Keywords: Amadeus, San Jose , Manager, Information Security GRC, Executive , San Jose, California
Didn't find what you're looking for? Search again!
Loading more jobs...