Senior Cloud Security Architect

IATA

  • Genf
  • Unbefristet
  • Vollzeit
  • 1 Monat her
Employment Type: Permanent
Contract Duration:Why you will love working hereAt IATA, we represent over 350 airlines worldwide, striving to make aviation safer, smarter, more sustainable, and inclusive.
  • Our Values are not just words on a page - they are the energy behind everything we do: ONE IATA - We collaborate across teams, TRUSTED - We do the right thing, INNOVATIVE - We make tomorrow better, INCLUSIVE - We embrace diverse perspectives.
  • With over 30,000 courses available, we believe in continuous learning and support your growth in an ever-changing industry.
  • Diversity, equity, and inclusion are our priorities. We are certified by the Equal Salary Foundation, offering equal pay and family-friendly policies.
  • We encourage community involvement through volunteering and strive to make tomorrow better for aviation and our communities. We offer time off so you can support causes important to you.
  • We promote work-life balance with flexible work options, including remote and hybrid work, a generous 'work from abroad' policy, and you get your birthday off!
About the team you are joiningWorking within the Information security team in the Information and Data (I&D) division, this role will report to e Chief Information and Data Officer (CISO). You will primarily focus on improving the security architecture of the IATA Information Technology cloud environment. You will be responsible for the design and architecture of the unified infrastructure solution running on AWS. To contribute most effectively you will have to demonstrate a deep understanding of AWS cloud computing concepts and how security controls are applied in AWS. Examples of cloud security concepts include:
Systems and Network Architecture
Identity and Access Management
Securing CI/CD pipelines
Secrets Management
Protecting data at rest and in transit
Logging, detection and response
Security controls for containers (e.g. Docker and Kubernetes).What your day would be likeDesign, build and implement enterprise-class security systems for a production environment
Align standards, frameworks and security with overall business and technology strategy
Identify and communicate current and emerging security threats
Design and implement secure cloud architectures for IaaS, PaaS, and SaaS models
Develop and enforce cloud security policies, standards, and best practices
Perform threat modeling, risk assessments, and architecture reviews for cloud-based applications and services
Develop and maintain documentation on security architecture, system designs, and configuration
Designing AWS cloud security solution in hybrid enterprise environment
Design security architecture elements to mitigate threats as they emerge
Create solutions that balance business requirements with information and cyber security requirements
Identify security design gaps in existing and proposed architectures and recommend changes or enhancements
Implementing AWS cloud security solution and proof of concept environment.
Creating cloud migration designs and migrating environment
Establishing trust and collaborative working relationships with the rest of the ITS team including participating in workshops
Constantly evolving and growing cloud security skills
Actively sharing knowledge within the teamWe would love to hear from you ifMaster's degree in computer science, Engineering or Cybersecurity. Preferred certification: CISSP (Certified Information Systems Security Professional) and CCSP (Certified Cloud Security Professional)
8 years experience with Security Architect and/or Engineering, of which 5 with AWS
Candidates must have a keen interest in public cloud security technology, and already have experience in architecture of AWS security solutions. An “AWS Certified Security - Speciality” certification is required
Experience building enterprise security strategy for cloud adoption or driving the program's evolution to meet new requirements
Knowledge of ISO 27001:2013 / PCI-DSS / SOC2/ NIST
Deep expertise in AWS:; Azure, GCP and multi-cloud experience is a plus
Strong knowledge of cloud-native security tools AWS Security Hub; Azure Defender, GCP Security Command Center is a plus
Understanding of MITRE ATT&CK, CSA
Solid understanding of Zero Trust Architecture, SASE, and container security (e.g., Kubernetes, Docker
Strong knowledge and hands-on technical expertise of the following technologies and concepts: DevOps, Threats modelling, automated pipeline technologies and Identity and access management (IAM)
Demonstrated ability to identify risks associated with business processes, operations, information security programs and technology projectsTravel Required: 5 - 10%Learn more about IATA's role in the industry, our benefits, and the team at . We are looking forward to hearing from you!

IATA