Employment Type: Permanent
Contract Duration:
At IATA, we speak for the airlines of the
world, serving and supporting over 300 of them across all continents. We
are passionate and knowledgeable about the aviation industry, and we strive to
make it safer, smarter, more sustainable and more inclusive. We celebrate
diversity and inclusion in our workforce, and we respect and value the
different backgrounds, perspectives and skills of our employees. We also care
about our employees’ wellbeing, and we provide flexible work arrangements,
travel benefits, family-friendly policies, equal pay and a day off on your
birthday. We believe in giving back to the community and encourage our staff to
participate in volunteering activities that support causes they care about. We
encourage you to join our global community of aviation enthusiasts, and we will
do our best to make you feel comfortable during the interview process. IATA is
more than a trade association; it is a vision of a better future for air
travel.
About the team you are joining
Reporting
to the Senior Manager Information Security, you will assist the team to ensure
the security of the IATA Information Technology environment. The primary focus
of the position is to maintain IATA's Information Security Management System
(ISMS) in order to facilitate audit processes (ISO27001, SOC2, PCI DSS). This
person will represent Information & Data (I&D) in various project and
operational activities to ensure the remediation of audit, risk and compliance
findings.
What your day would be like
Represent I&D as the key point of contact for all internal audit, compliance and risk management topics
Custodian of all technologies to support these functions and ensure data is accurate and up to date (e.g. RiskConnect)
Review and regularly update all information security policies and ensure broader communication on any new or revised documents
Assist Supply Chain Security Manager with reviews and audits across vendors and provide assistance in RFP processes within I&D
Assist in review of all contracts and ensure I&D security clauses are consistent and applicable
Assist data security and governance teams in reviewing new legislations to enable IATA to provide a response to changing rules and regulations
Provide security assistance to teams in the innovation and digital automation space
Perform Risk Assessment exercises on behalf of I&D as it relates to new technologies and products
Compile standard responses for all security requests as well as keep a prioritization register to ensure tasks are handled proactively
Develop an I&D security communications plan to ensure IATA staff are updated on new items impacting the organization from a security perspective
We would love to hear from you if
Engineering degree in computer science or related information security field
3-4 years’ experience in Information
Security; experience in IT Audit and compliance is advantageous
Certification in ISO/IEC 27001:2022, PCI-DSS and SOC2
Travel Required: N
Learn more about IATA’s role in the industry, our benefits, and the team at iata/careers/. We are looking forward to hearing from you!
