Lead Principal Specialist - Information Security

Amadeus Data Processing GmbH

Bangalore, India
On-site
Security risk management process
Isms alignment
Iso/iec 27005:2022
Lead and execute the security risk management process across designated business domains, ensuring alignment with corporate standards and supporting the organization’s Information Security Management System (ISMS)

Job Summary

  • Lead and execute the security risk management process across designated business domains, ensuring alignment with corporate standards and supporting the organization’s Information Security Management System (ISMS).
  • Determine and document applicable security risk scenarios, evaluate asset criticality, identify vulnerabilities, and assess business impacts to determine risk levels.
  • Ensure compliance with ISO 27001, PCI DSS, DORA, NIS2, and other relevant standards, and support audits by providing evidence of due diligence.

Matching Summary

Lead and execute the security risk management process across designated business domains, ensuring alignment with corporate standards and supporting the organization’s Information Security Management System (ISMS).

Skills & Requirements

Must-have

  • security risk management process
  • ISMS alignment
  • ISO/IEC 27005:2022
  • ISO 31000:2018
  • Archer GRC platform
  • risk assessment methodologies
  • threat modelling

Nice-to-have

  • foster improvement of security posture
  • actionable documentation

Key Requirements

  • Proven experience in cybersecurity risk management
  • Hands-on experience with Archer GRC platform
  • Familiarity with ISO/IEC 27005, ISO 31000, and ISO 27001
  • CISSP, CISM, CRISC, CGEIT, ISO 27001 Lead Implementer/Auditor or equivalent certifications

Work Rights

Not specified

Tailored Resume

Cover Letter