Security & Identity Management Architect

SITA

  • London
  • Permanent
  • Full-time
  • 23 days ago
Job Description:OverviewWELCOME TO SITAis the leading specialist in air transport communications and information technology. We don’t just connect the global aviation industry, we apply decades of experience and expertise to address almost every core business, operational, baggage, and passenger process in air transport. As an organization, we cover 95% of all international air travel destinations and work with over 2,800 air transport and government customers in every corner of the globe. Immerse yourself in the dynamic world of technology while embracing our collaborative, and inclusive culture.Ready to redefine air travel? The journey starts here, with you at SITA.ABOUT THE ROLE & TEAM:As a Security & Identity Management Architect, you will play a critical role in infrastructure security strategy by designing, implementing, and maintaining secure DevOps practices and infrastructure to protect our organisation's assets and data from cyber threats and vulnerabilities. You will collaborate closely with Engineering, Development, Operations, and security teams to ensure that security is integrated seamlessly throughout the software development lifecycle.WHAT YOU WILL DO:
  • Design and develop the architecture for identity and access management systems, including authentication, authorization, and user provisioning/de-provisioning processes.
  • Develop and implement processes for managing the security lifecycle.
  • To build deep knowledge of the of the Security product, including the services and tools provided. Based on this knowledge, able to propose enhancements, with sponsorship from the Product Owner.
  • Implement controls and workflows for managing and monitoring privileged access to critical systems and resources, including privileged account management and session monitoring.
  • Integrate identity and access management solutions with other security technologies such as SIEM (Security Information and Event Management), DLP (Data Loss Prevention), and IAM (Identity and Access Management) platforms to enhance overall security posture.
  • Define and enforce access control policies based on business requirements, regulatory compliance, and industry best practices.
  • Conduct risk assessments and security audits to identify vulnerabilities and weaknesses in identity and access management systems, and develop remediation plans to address security gaps.
  • Dealing with the integration of 3rd parties, customer solutions, and internal stakeholders requirements.
  • Act as a liaison point between the product development team and customer stakeholders.
  • Show passion and professionalism to exceed client expectations with clear and regular communication. Keeping them informed of the updates on any changes or issues, and soliciting feedback.
QualificationsEXPERIENCE::
  • 3 years’ cyber security experience in a complex/enterprise IT environment.
  • In-depth understanding of cloud security concepts and best practices across major cloud platforms.
  • Knowledge and demonstrated application of key security principals to IT architecture:
  • Defense in depth, Zero trust, Least privilege, Segregation of duties, etc.
  • Extensive experience in designing and implementing security controls, policies, and procedures.
  • Proven track record in identifying and mitigating security risks and vulnerabilities across different layers of the technology stack.
  • CISSP, CISM or similar certification in security field.
  • Excellent communication and presentation skills to facilitate workshops, stand-ups and Security review meetings with customer and/or stakeholders.
  • Strong understanding of cloud-based architecture and hands-on development (Infrastructure as Cloud, CI/CD pipelines), cloud-based security controls (SASE, CSPM, CASB) and security automation (Ansible, Terraform).
  • Experience in conducting security assessments, risk analysis, and threat modeling.
  • Demonstrated ability to stay updated with the latest security trends, threats, and technologies.
NICE-TO-HAVE::
  • Proficiency in containerization technologies like Docker and container orchestration platforms such as Kubernetes.
  • Proven ability to work with DevOps teams to plan projects, deal with technical issues using JIRO/ADO and provide knowledge transfer.
  • Excellent interpersonal skills, including the ability to influence and work with teams with different reporting lines.
WHAT WE OFFER:SITA’s workplace is all about diversity, many different countries and cultures are represented in our workforce. We collaborate in our impressive offices, embracing a hybrid work format. As part of our global benefits, we offer:🏡 Flex-week: Work from home up to 2 days/week (depending on your Team's needs).⌚ Flex-day: You may wish to flex your arrival time at the office, to beat the rush hours or you may want to leave the office earlier to pick up your kids from school or to go to your favorite game: We support you in being open about your needs and routine with you manager.🌎 Flex-location: Benefit for 30 working days from anywhere around the world each year!🙌🏽 Competitive benefits according to the local marketSITA is an Equal Opportunity Employer and values a diverse workforce. In support of our Employment Equity Program, women, aboriginal people, members of visible minorities, and/or persons with disabilities are encouraged to apply and self-identify in the application process.

SITA