Req ID: 50782
Job Family: Information Technology/Software Development
Sabre is the global leader in innovative technology that leads the travel industry. We are always looking for bright and driven people who have a penchant for technology and want to hone their skills. If you are interested in challenging work, being part of a global team, and solving complex problems through technology, business intelligence and analytics, and Agile practices - then Sabre is right for you! It is our people who develop and deliver powerful solutions that meet the current and future needs for our airline, hotel, and travel agency customers.
Looking for a candidate to join the Sabre Risk & Security organization, responsible for leading the Risk Management function within the Governance, Risk & Compliance (GRC) team. The Risk Management function will drive an enterprise program that focuses on identifying and managing cybersecurity risks for Sabre. The objective of the program is to develop a streamlined process for risk identification leveraging various information security sources, assess key problem areas, communicate and articulate risks to key stakeholders and ensure risk is remediated to an acceptable level.
Responsible for managing and executing the following Cybersecurity Risk Management functions:
Partner with the enterprise and business units to assess, quantify, aggregate, and mitigate cybersecurity exposures through the identification of strategic, material, emerging and reputational risks and evaluate alignment with risk strategy and tolerance levels
Monitor the risk environment and consult on risk mitigation plans to ensure that exposures are kept at acceptable levels
Summarize intricate risk results into meaningful terms for senior leadership and clearly socialize security risks to assist the business in making beneficial decisions for the Company
Recommend and implement process and procedural changes to optimize the Risk Management program and ensure Sabre's ability to identify risk and increase efficiency in reducing the risks discovered
Oversee the Third Party Risk Management program
Consult with business stakeholders and technology teams to address security concerns and gap remediation
Participate in internal and external audit efforts as needed
Deliver reporting and metrics to demonstrate volume, value and trending of risk assessment and mitigation activities
Bachelor's Degree in Computer Science, Information Technology Management, or other technical discipline, or equivalent.
5-10 years of experience in information security, technology or technical risk analysis
Ability to research, create, and document requirements, processes, and technical specifications
Demonstrated understanding of cyber security risk management concepts, cybersecurity frameworks, threat and vulnerability management, and security technologies
Knowledge of information security fundamentals, best practices and industry standards
Familiarity with PCI Compliance requirements, EU/GDPR Compliance, Data Privacy & Security Regulations.
Certifications: CISSP, CISA, C-RISK or willingness to obtain
Ability to handle conflict resolution
Ability to adapt and adjust to multiple demands and competing priorities
Excellent written and verbal communication skills
Excellent documentation and organization skills
3+ years' experience in similar role.
Knowledge in multiple cybersecurity areas such as Identity and Access Management, Security Governance, Information Risk, Awareness and Education and/or Security Strategy.
Experience with NIST 800-53, ISO 27001, COBIT, COSO or other control frameworks.
Sabre is committed to working with and providing reasonable accommodation to applicants with disabilities. Applicants applying for a Sabre position with a disability who require a reasonable accommodation for any part of the application or hiring process may contact Sabre's Compliance Office at email@example.com.
Sabre is an equal employment opportunity/affirmative action employer and is committed to providing equal employment opportunities to minorities, females, veterans, and disabled individuals. EEO IS THE LAW
Stay connected with Sabre Careers
Job Segment: Computer Science, Manager, Information Security, Business Intelligence, Technology, Management
Apply now "
Sabre Holdings Corporation