Product Security Officer - London, United Kingdom - SITA

SITA

Verified Company

London, United Kingdom

1 week ago

Posted by:

Tom O´Connor

beBee Recruiter

Description

Overview:

Product Security Officer

-
Product Security Officer, you will have opportunities to take risks, challenge the status quo and shape the future for the greater good. You will be accountable for supporting the SITA product management community in ensuring existing and future products comply with security standards, applicable regulations, and meet market expectations regarding Information Security requirements. You will be responsible to ensure the implementation of information security measures throughout the product development lifecycle while ensuring consistent and effective information security administration procedures and processes.

At SITA, we achieve more, together. Are you ready to join us?
What you will do
Drives the process of creation, evolution, deployment, and operation of secure products and solutions, through:
Supporting the Product and Solution Teams (Product manager, Solution engineers, Devs etc.) in understanding and implementing appropriate security measures
Ensuring product security creation process is dully followed by DevOps team.
Providing guidance to Scrum DevOps teams based on market/customer security requirements
Ensuring security documentation is produced for legal and customer requirements
Ensuring security controls are implemented during product design.
Providing guidance to Sales and legal GEOs in managing product Security Requirements in contracts (RFP, renewals ).
Ensuring pdt security risks are managed through Acceptance, Mitigation, Avoidance or Transfer by appropriate stakeholders.
Supporting and facilitate the security assessments done as part of the Security program on the portfolio
Providing an interface between product management and other teams on Information Security related topics (Enterprise Information Security Office, Product & Solution engineering, Solution Architects)
Supporting customer related security requests in relation to provided products and solutions.

Qualifications:

Who you are

Minimum of 810 years IT experience or equivalent work experience in a relevant environment.
Degree in a technical discipline (e.g. Computer Science Engineering Mathematics etc.) or sufficient work experience to demonstrate proficiency at this level.
Information Security Certification(s) a plus (CISSP, CompTIA Security+, CISA, CISM, ISO 27001 Lead Implementer, etc.)
Proven track record in producing, communicating, and documenting Information Security maturity levels
Working in small teams and managing own workload
The following previous experience a plus:
Information Technology Provider / Telecom Provider
Air Transport Industry
Consultant
Information Security Program
Information Security audit

What we offer

SITA's workplace is all about diversity: many different countries and cultures are represented in our workforce, and colleagues who've been working here for decades collaborate with those just out of college and early in their careers.

SITA is a place of change and constant improvement, where we're always pushing ourselves to find better ways of doing things:

smarter, quicker, easier, for us and our customers and for their customers too.- And we offer all the good stuff you'd expect like holidays, bonus, flexible benefits, medical policy, pension plan and access to world class learning.

Welcome to SITA

We design, build, and support technology solutions all with one vision to create easy air travel every step of the way.

As an organization, we cover 95% of all international air travel destinations and work with over 2,800 air transport and government customers in every corner of the globe.

Are you ready to explore the opportunities?

Keywords:
Product Security Officer, product security, information security, cyber security, information security administration, security measures, security requirements, security control, security assessment, **Enterprise Information Security Office, Product & Solution engineering, Solution Architects, CISSP, CompTIA Security+, CISA, CISM, ISO 27001 Lead Implementer