Lead and execute the security risk management process across designated business domains, ensuring alignment with corporate standards and supporting the organization’s Information Security Management System (ISMS), legal compliance, and business continuity
Job Summary
Lead and execute the security risk management process across designated business domains, ensuring alignment with corporate standards and supporting the organization’s Information Security Management System (ISMS), legal compliance, and business continuity.
Provide quarterly security risk maps and updates to key stakeholders including the Head of Unit, Amadeus CISO, and CISO Risk Management Office.
Amadeus aspires to be a leader in Diversity and Inclusion in the tech industry, enabling every employee to reach their full potential by fostering a culture of belonging and fair treatment.
Matching Summary
Lead and execute the security risk management process across designated business domains, ensuring alignment with corporate standards and supporting the organization’s Information Security Management System (ISMS), legal compliance, and business continuity.
Skills & Requirements
Must-have
security risk management process
Archer GRC platform
risk assessment methodologies
threat modelling
ISO/IEC 27005
ISO 31000
ISO 27001
PCI DSS
DORA
NIS2
Nice-to-have
foster improvement of security posture
aligned with industry standards
inclusive employee experience
culture of belonging
Key Requirements
Proven experience in cybersecurity risk management
Hands-on experience with Archer GRC platform
Familiarity with ISO/IEC 27005, ISO 31000, and ISO 27001 standards
CISSP, CISM, CRISC, CGEIT, ISO 27001 Lead Implementer/Auditor, or equivalent certifications