Principal Security Engineer

Job Title

Principal Security Engineer

Business Environment

With more than 100 airlines using our solutions (front-end and/or APIs) and delivering those through Digital touchpoints to their passengers, we are publicly exposed to the external world and as such, are very sensitive to all sorts of attacks, such as data breaches, fraud, bot attacks, and overall cyberattacks. Hence, security is at the heart of our priorities in Digital and for this we have put in place a dedicated virtual organization with a core team and epic owners on SDL, compliance, and Cybersecurity, which are our key focus in Digital.

In this context, we are looking for a talented expert in security, able to drive the whole Digital security vision from a technical angle, providing guidance and support to the DevSecOps teams, working in strong collaboration with security stakeholders in Amadeus and being the referent with regards to security risks or incidents for those (BISO/CISO/TISO/SDL and SOC organizations).

Your Main Responsibilities

Common accountabilities:

The Security Manager is the main technical counterpart of the Corporate Security organizations (TISO, BISO, CISO, GSOC, DISO), aligning company security strategy to Digital challenges. As the security scope in Digital is very large, you will also be deeply involved from a technical angle with other security entities within Amadeus, with regular alignment regarding objectives, evolutions, and priorities. You will have a key role, ensuring the DevSecOps teams in Digital have all the means to monitor their security posture. For this, you will work closely in SAFe with the various trains in Digital (7) where your main entry points will be the White Hat and the architects.

Specific accountabilities:

The Security Manager is leading the security strategy and execution for the Digital for Airline organization (800+ engineers):

• Has a vast knowledge in information security and risk management
• Support the security epic owners about compliance, SDL, and cybersecurity
• Support the Azure migration security management
• Be the entry point and drive Digital security-related incidents and data privacy topics
• Coordinates the fix of security vulnerabilities across the division
• Propose and drive Digital initiatives around security
• Provide security GO/NO GO recommendation for all new projects or technical migrations.
• Become a trusted business adviser and create a security-positive environment

The Security Manager is also working in strong collaboration with experts, white hats, architects, and DevSecOps to:

• Provide guidance and recommendations for the most effective cloud and DevSecOps security
• Review and discuss adequate mitigation and remediation related to vulnerabilities
• Promote and legitimate internal IT security strategy, practices, and processes.
• Contribute to maintaining risk register and actively reduce risk of identified weaknesses
• Perform technological watch in security standards, technologies, and public vulnerabilities.
• Participate in customer meetings to support DevSecOps teams with security expertise
• Provide guidance and support in conjunction with the epic owners for the run security posture and vulnerability management
• Define the security vision: zero-trust architecture, trusted supply chain, client-side security,...
• Actively participate in the Software Security Community gathering security managers across Amadeus
• Animate the Digital security community through awareness sessions and events

What we can offer you

• Be rewarded with a competitive remuneration, an individual and company bonus and enjoy many benefits.
• Work from anywhere: Flexible teleworking from 1 to 3 days per week. You will also benefit from a home office set-up premium & monthly allowance.
• 6 weeks holiday, plus pension contribution and healthcare insurance.
• Experience in an environment with unique complexity and a hardly matched criticality among the leading tech companies.
• Professional development in a truly international and multisite environment with a great mix of people.
• A wide set of trainings available to broaden your knowledge and enhance your soft skills including onsite and online learning hubs packed with technical and soft skills to help to develop any competencies.
• Enter a diverse and inclusive workplace.
• Enjoy your office life: Coffee hubs to work or relax, quiet zone, flexible desks and agile areas, on-site restaurants, tennis, soccer, yoga, dance, on-site sport center and classes, and on-site concierge services.

How do we hire?

• Online application: Submit your online application and our Talent Acquisition team will get in touch if your skills match the role.
• Phone Interview: We'll get to know each other with a short casual conversation. You'll also have the chance to ask questions.
• Online Testing: Depending on the role you applied for, you may have to do some online tests.
• Interviews: First, you'll meet one of our talent teams. Then you'll have an interview with a member or members of the team you're looking to join.
• Offer: Our Talent team will make you a job offer and welcome you to your new role with us.
• Join our global team: Where you can develop your skills and build an international career that matters.

Diversity & Inclusion

Amadeus aspires to be a leader in Diversity, Equity and Inclusion in the tech industry, enabling every employee to reach their full potential by fostering a culture of belonging and fair treatment, attracting the best talent from all backgrounds, and as a role model for an inclusive employee experience. Amadeus is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to gender, race, ethnicity, sexual orientation, age, beliefs, disability or any other characteristics protected by law.