To lead and execute the security risk management process across designated business domains, ensuring alignment with corporate standards and supporting the organisation’s Information Security Management System (ISMS), legal compliance, and business continuity
Job Summary
To lead and execute the security risk management process across designated business domains, ensuring alignment with corporate standards and supporting the organisation’s Information Security Management System (ISMS), legal compliance, and business continuity.
Provide quarterly security risk maps and updates to key stakeholders and ensure documentation of all activities and decisions related to risk management.
Amadeus aspires to be a leader in Diversity and Inclusion in the tech industry, enabling every employee to reach their full potential by fostering a culture of belonging and fair treatment.
Matching Summary
To lead and execute the security risk management process across designated business domains, ensuring alignment with corporate standards and supporting the organisation’s Information Security Management System (ISMS), legal compliance, and business continuity.
Skills & Requirements
Must-have
security risk management process
ISMS, legal compliance, business continuity
risk assessment methodologies
threat modelling
risk registers and heatmaps
security capabilities knowledge
Nice-to-have
foster improvement of security posture
documentation aligned with industry standards
Key Requirements
Proven experience in cybersecurity risk management
Hands-on experience with Archer GRC platform
Familiarity with ISO/IEC 27005, ISO 31000, ISO 27001
CISSP, CISM, CRISC, CGEIT, ISO 27001 Lead Implementer/Auditor, or equivalent certifications