Overview:
Product Security Officer
As
Product Security Officer, you will have opportunities to take risks, challenge the status quo and shape the future for the greater good. You will be accountable for supporting the SITA product management community in ensuring existing and future products comply with security standards, applicable regulations, and meet market expectations regarding Information Security requirements. You will be responsible to ensure the implementation of information security measures throughout the product development lifecycle while ensuring consistent and effective information security administration procedures and processes.
Reporting to the Senior Information Security Manager you will be a part of the SITA Product Security Office responsible for all solutions within a portfolio. This is an interesting role as it combines different areas of responsibilities. The successful candidate will be uniquely positioned to influence the security maturity of the aviation industry.
At SITA, we achieve more, together. Are you ready to join us?
What you will do
Drives the process of creation, evolution, deployment, and operation of secure products and solutions, through:
- Supporting the Product and Solution Teams (Product manager, Solution engineers, Devs etc.) in understanding and implementing appropriate security measures
- Ensuring product security creation process is dully followed by DevOps team.
- Providing guidance to Scrum DevOps teams based on market/customer security requirements
- Ensuring security documentation is produced for legal and customer requirements
- Ensuring security controls are implemented during product design.
- Providing guidance to Sales and legal GEOs in managing product Security Requirements in contracts (RFP, renewals…).
- Ensuring pdt security risks are managed through Acceptance, Mitigation, Avoidance or Transfer by appropriate stakeholders.
- Supporting and facilitate the security assessments done as part of the Security program on the portfolio
- Providing an interface between product management and other teams on Information Security related topics (Enterprise Information Security Office, Product & Solution engineering, Solution Architects)
- Supporting customer related security requests in relation to provided products and solutions.
Qualifications:
Who you are
- Minimum of 8-10 years IT experience or equivalent work experience in a relevant environment.
- Degree in a technical discipline (e.g. Computer Science Engineering Mathematics etc.) or sufficient work experience to demonstrate proficiency at this level.
- Information Security Certification(s) a plus (CISSP, CompTIA Security+, CISA, CISM, ISO 27001 Lead Implementer, etc.)
- Proven track record in producing, communicating, and documenting Information Security maturity levels
- Working in small teams and managing own workload
- The following previous experience a plus:
- Information Technology Provider / Telecom Provider
- Air Transport Industry
- Consultant
- Information Security Program
- Information Security audit
What we offer
SITA’s workplace is all about diversity: many different countries and cultures are represented in our workforce, and colleagues who’ve been working here for decades collaborate with those just out of college and early in their careers. SITA is a place of change and constant improvement, where we're always pushing ourselves to find better ways of doing things: smarter, quicker, easier, for us and our customers and for their customers too.
And we offer all the good stuff you’d expect like holidays, bonus, flexible benefits, medical policy, pension plan and access to world class learning.
Welcome to SITA
SITA is the world’s leading specialist in air transport communications and information technology. We don’t just connect the global aviation industry. We apply decades of experience and expertise to address almost every core business, operational, baggage, and passenger process in air transport.
We design, build, and support technology solutions all with one vision to create easy air travel every step of the way. As an organization, we cover 95% of all international air travel destinations and work with over 2,800 air transport and government customers in every corner of the globe. Are you ready to explore the opportunities?
Keywords: Product Security Officer, product security, information security, cyber security, information security administration, security measures, security requirements, security control, security assessment, Enterprise Information Security Office, Product & Solution engineering, Solution Architects, CISSP, CompTIA Security+, CISA, CISM, ISO 27001 Lead Implementer
In case of issues with uploading your CV or accessing the application system, please contact us @
careers@sita.aero