WELCOME TO SITA
SITA is the leading specialist in air transport communications and information technology. We don’t just connect the global aviation industry, we apply decades of experience and expertise to address almost every core business, operational, baggage, and passenger process in air transport. As an organization, we cover 95% of all international air travel destinations and work with over 2,800 air transport and government customers in every corner of the globe. Immerse yourself in the dynamic world of technology while embracing our collaborative, and inclusive culture.
Ready to redefine air travel? The journey starts here, with you at SITA.
ABOUT THE ROLE & TEAM:
As a Lead Specialist, you will assist in setting the information security strategic direction for the organization by developing and maintaining enterprise IT security risk management framework, performing risk assessments, and consulting with business owners on the implementation of the risk management framework. As part of the GRC (Governance, risk and compliance) team, you will be responsible for ensuring that SITA’s governance policies are in line with best practices, managing risk and overseeing SITA’s compliance efforts with relevant regulations and standards.
WHAT YOU WILL DO:
- Perform Supplier security assessments and potentially optimize the process.
- Facilitate compliance with regulatory requirements and industry standards (ISO27K).
- Evaluate risks and develop security policies and standards.
- Develop and report on information security metrics.
- Perform IT risk assessments and compliance reviews.
- Evaluate risks and develop security standards, procedures.
- Assess and prioritize information security and cybersecurity risk across the organization.
- Improve security positioning through process improvement, policy, automation, and the continuous evolution of capabilities.
EXPERIENCE:
- Minimum 6 years of professional experience, with 4 years of experience in information security and/or IT risk management.
- 4 + years of hands-on experience as a security practitioner, implementing a variety of solutions across multiple disciplines.
- Experience in the development, and documentation of information security policies and standards used to develop an information security management system for an organization.
- Experience in maintaining and monitoring compliance to information security process and procedures.
- Experience implementing strategic information security programs within large organizations, ISO 27001 and Payment Card Industry (PCI).
- Experience designing and implementing security policies and infrastructure in a multi-tenant ISP Datacenter environment and/or cloud computing environment.
NICE-TO-HAVE:
- Bachelor's degree in computer science, information systems or related field, or equivalent experience required.
- One of the following certifications:
- Certified Information Systems Security professional (CISSP)
- Certified Information System Auditor (CISA)
- Certified in Risk and Information Systems Controls (CRISC)
WHAT WE OFFER:
At SITA, we disrupt the status quo, by empowering our people to pioneer innovations that touch the lives of billions. Bringing together diverse minds from across the globe, we foster a dynamic and positive workplace culture, that values our talented team members for their contributions and dedication. Check out our core benefits, enabling our people across the globe:
🏡Flex Week: Work from home up to 2 days/week (depending on the needs of your team and your customers)
⏰ Flex Day: Shape your workday to suit your life and your plans.
🌎 Flex-Location: Take up to 30 days a year to work from any location in the world.
🌿Employee Wellbeing: We’ve got you covered with our Employee Assistance Program (EAP), available to you and your dependents 24/7, 365 days/year, and Champion Health - a personalized, proactive platform to support diverse wellbeing needs.
🚀Professional Development: Level up your skills with our training platforms, including LinkedIn Learning!
🙌 Competitive Benefits: Access competitive benefits tailored to the local market and your employment status.
SITA is an Equal Opportunity Employer and values a diverse workforce. In support of our Employment Equity Program, women, aboriginal people, members of visible minorities, and/or persons with disabilities are encouraged to apply and self-identify in the application process.