Information Security Analyst

Job Title

Key responsibilities

• Identify security vulnerabilities in the Vision-Box products and implement necessary solutions to remediate the vulnerabilities;
• Review cloud and on-premises deployment architectures and implement required security controls;
• Identify manual processes that can be smartly automated;
• Ensure security best practices are followed and provide solutions to improve existing infrastructure processes in the company;
• Set security best practices for cloud security;
• Define documentation of security requirements for applications (web, mobile, host, SOA, etc.);
• Mentor other engineers, define our technical culture, and help build a fast-growing team;
• Contribute to tool evaluation, selection, and recommendation internally.
  Participate in the execution of training programs for different teams
  Work with senior management on defining roadmaps, and needs and provide short and mid-term forecasting;
• Contribute to as a Subject Matter Expert & internal professional community
  Conduct regular security assessments and audits to identify vulnerabilities and ensure compliance with security standards and protocols;
• Design the installation and operation of security tools such as firewalls, anti-virus software, patch management systems, and other protective measures;
• Stay updated on the latest industry security trends, threats, and technology to improve our security posture continually;
• Educate and train staff on security best practices and awareness.

About the Ideal Candidate

• Master’s degree in computer science, Telecommunications, or Information Security;
• Certifications such as CSSLP, CISSP, CISA, etc. are highly desirable;
• Certifications from pentesting vendors (OSCP, CEH,…) are preferred;
• SAST & DAST tools related to education and certificates are beneficial;
• At least 3 years of experience in the Application Development (DevOps);
• At least 1 year of experience in Application Security Testing;
• Hands-on experience in Cloud Environments and on-premises Data Centre;
• Good skills in at least one or more scripting languages; Python, or Shell/PowerShell;
• Experience in management and definition of security in the software development lifecycle (SDLC);
• Experience in software development and SDLC in Java, Python, C#, etc…;
• Knowledge of conducting security checks (static and dynamic code analysis, vulnerability analysis in applications and penetration tests, security component analysis);
• Understanding of virtualization and container technologies (Docker, Kubernetes, OpenShift, …);
• Experience with OWASP Testing Guide v3 / 4 and OWASP TOP 10;
• Knowledge of securing APIs;
• Experience in Web and/or Mobile applications and common vulnerabilities;
• Experience with cloud service providers (e.g., AWS, Azure, Google Cloud) and their native security tools;
• Familiarity with compliance frameworks (e.g., ISO 27001, SOC 2, HIPAA, GDPR);
• Proven experience as a Security Engineer or similar role, with hands-on experience in securing both on-premises and cloud-based environments;
• Strong knowledge of network and web-related protocols (e.g., TCP/IP, UDP, IPSEC, HTTP, HTTPS, routing protocols);
• Knowledge of security in micro-services is beneficial;
• Communication skills include understanding client processes in any area in detail;
• Excellent coordination and communication skills;
• Business writing skills (capturing needs and writing it down on formal documents).

What we can offer you:

• 💰 A complete rewards offer - Amadeus provides attractive remuneration packages, covering all essential components of a competitive reward offer, including bonus, equity, pension plan, travel, life and healthcare insurance, as well as lunch and transport allowance and other benefits.
• 🌎 A truly global DNA - Everything at Amadeus is global, from our people to our business, which translates into our footprint, processes, and culture.
• 🎓 Great opportunities to learn - Learning happens all the time and in many ways at Amadeus, through on-the-job training, formal learning activities, and day-to-day interactions with colleagues.
• 🤗 A caring environment - Amadeus fosters a caring environment, nurturing both a fulfilling career and personal and family life. We care about our employees and strive to provide a supportive work environment.
• 🌟 A flexible working model - We want our employees to do their best work, wherever and however it works best for them.
• 🌈 A diverse and inclusive community - We are committed to leveraging our uniquely diverse population to drive innovation, creativity, and collaboration across our organization.
• 📈 A Reliable Company - Trust and reliability are fundamental values that drive our actions and shape long-lasting relationships with our customers, partners, and employees.
• 🎯 A critical mission and purpose - At Amadeus, you will be powering the future of travel and pursuing a critical mission and extraordinary purpose.

Diversity & Inclusion

Amadeus aspires to be a leader in Diversity, Equity and Inclusion in the tech industry, enabling every employee to reach their full potential by fostering a culture of belonging and fair treatment, attracting the best talent from all backgrounds, and as a role model for an inclusive employee experience.  

Amadeus is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to gender, race, ethnicity, sexual orientation, age, beliefs, disability or any other characteristics protected by law.