SDL Security Engineer

Job Title

Summary of the Role: Are you interested in Cyber Security? Join us as a Security Engineer in the Secure Development Lifecycle (SDL) pillar of the Application Security Office! In today's world, software and IT businesses face unprecedented threats, with criminals having almost unlimited resources at their disposal. Cyber Security is more crucial than ever, and you can make a difference!

In this role, you will:

• Collaboratively contribute to the ongoing evolution of our corporate SDL vision and strategy to ensure successful company-wide adoption.

• Contribute to defining Amadeus's response to security and compliance risks related to software engineering and the code we develop.

• Participate in the exploration and evaluation of new security tools, in collaboration with key stakeholders, especially the Engineering Toolchain TISO (Technical Information Security Officer).

• Support the alignment of internal tools like the SDL section of the CISO dashboard, SDL cookbook, or SDL KPIs with the needs of Business units.

• Share security knowledge with the engineering community through coaching sessions or advice on triaging in security tools.

• Enhance SDL training capabilities by providing internal training and coaching across all organizations.

• Foster engagement within the Software Security Community through communication, events, open dialogue, and feedback collection.

• Promote SDL in the Engineering Community to encourage built-in security by design and by default for all code developed in Amadeus, including everything-as-code, Cloud Native Applications, and applications using AI.

About the Ideal Candidate:

• Proven experience in the related field.

• Proficient in developing tools using Python and/or Microsoft Power Platform.

• Excellent communication skills, particularly for presentations and coaching.

• Demonstrates curiosity and motivation to explore new topics and domains.

• Familiar with using Agile and SAFe methodologies to manage projects efficiently.

• An experience as an Amadeus business app developer would be a plus

Application process

The application process is easy and fast. Create manually your candidate profile or uploading your CV/Resumé.

Are you the one we’re looking for? Apply now

What we can offer you

• 🎯A critical mission and purpose - At Amadeus, you will be powering the future of travel and pursuing a critical mission and extraordinary purpose.

• 🌎A truly global DNA - Everything at Amadeus is global, from our people to our business, which translates into our footprint, processes, and culture.

• 🎓Great opportunities to learn - Learning happens all the time and in many ways at Amadeus, through on-the-job training, formal learning activities, and day-to-day interactions with colleagues.

• 🤗A caring environment - Amadeus fosters a caring environment, nurturing both a fulfilling career and personal and family life. We care about our employees and strive to provide a supportive work environment.

• 💰A complete rewards offer - Amadeus provides attractive remuneration packages, covering all essential components of a competitive reward offer, including salary, bonus, equity, and benefits.

• 🌟A flexible working model - We want our employees to do their best work, wherever and however it works best for them.

• 🌈A diverse and inclusive community - We are committed to leveraging our uniquely diverse population to drive innovation, creativity, and collaboration across our organization.

• 📈A Reliable Company - Trust and reliability are fundamental values that drive our actions and shape long-lasting relationships with our customers, partners, and employees.

Business Environment: Our Application Security Office is one of three domain security offices in Amadeus. We cover the security and compliance of all software developed in Amadeus, whether applications, platform components, or internal tools – or everything-as-code. Together with the Platform & Infrastructure security office, we cover the entire technical stack. Our mission is to ensure that existing and new developments are made sufficiently resistant to all forms of attacks and misuse, and that compliance is maintained with all applicable legislation, industry regulations, and standards (such as PCI DSS, GDPR, SOC1/SOC2, ISO 27K, and NIS2).

Ten years ago, our efforts to define the best way of proactively building-in security and compliance, by default and by design, in all the code developed in Amadeus led to the creation of our formalized Secure Development Lifecycle (SDL). The mission of the SDL is to provide all engineering teams with everything they need to successfully manage the security of their own applications: a complete methodology, together with all the tools, processes, and skills – to be able to know and control their security risk and drive the necessary improvements.

The SDL team is responsible for driving the evolution of this key pillar in the CISO organization. The purpose is three-fold:

Keep a close watch on application security threats, industry trends, technology & best practices – to anticipate those changes that may affect Amadeus and propose the most relevant responses in terms of methodology, processes, and tooling. Facilitate the SDL adoption through communication, user groups, events, cookbooks, advocacy, and coaching – and help onboarding new organizations on their SDL journey. Monitor the deployment, ensure efficiency, maturity and risk of the different Amadeus organizations, thanks to the integration of a set of KPIs and measurements in the CISO Dashboard.

#LI-EMEA

Diversity & Inclusion

Amadeus is an Equal Employment Opportunity Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy, childbirth, or a related medical condition), ancestry, national origin, age, genetic information, military or veterans status, sexual orientation, gender expression, perception, or identity, marital status, mental or physical disability status, or any other protected federal, state, or local status unrelated to performance of work involved.

Amadeus endeavors to make https://jobs.amadeus.com/ accessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process for Amadeus France, please contact us at accommodations.france@amadeus.com. This contact information is for accommodation requests only and cannot be used to inquire about the status of applications.