Employment Type:Permanent
Contract Duration:
At IATA, we speak for the airlines of the world, serving and supporting over 300 of them across all continents.We are passionate and knowledgeable about the aviation industry, and we strive to make it safer, smarter, more sustainable and more inclusive. We celebrate diversity and inclusion in our workforce, and we respect and value the different backgrounds, perspectives and skills of our employees. We also care about our employees’ wellbeing, and we provide flexible work arrangements, travel benefits, family-friendly policies, equal pay and a day off on your birthday. We believe in giving back to the community and encourage our staff to participate in volunteering activities that support causes they care about. We encourage you to join our global community of aviation enthusiasts, and we will do our best to make you feel comfortable during the interview process. IATA is more than a trade association; it is a vision of a better future for air travel.
About the team you are joining
Working within the CyberSecurity team in the Information & Data division, this role will report to the Senior Manager Information Security. This hands-onrole is to oversee the day-to-day operations of all IATA’s Cybersecurity infrastructure, manage incident response investigations and activities, assist with implementing new security services, and maintain and operate the existing security technologies thereby ensuring the protection of IATA’s technology and data assets.This role involves close collaboration with IT, compliance, business units and managed security services (SOC, MDR) to ensure robust security monitoring and rapid response to cyber threats.
What your day would be like
Lead Security Operations Centre (SOC) including threat monitoring, analysis, and incident response
Serve as the operational point of contact for external threat detection and response services
Review and validate alerts, reports, and recommendations provided by third-party vendors
Investigate and respond to security incidents, identified internally and by third-party partners, across IATA
Supervise technical relationship with our external SOC provider
Support continuous improvement of SOC detection and response capabilities
Ensure integration of SOC/MDR capabilities with internal systems, processes, and stakeholders
Complete daily security operations tasks and requests
Meet regularly with 3rd party suppliers to ensure any incident remediation plans are implemented and reviewed
Coordinate and manage incident response activities
Operate cloud security technologies such as EDR, SSE, CASB, DLP, SIEM
Maintain and refine incident response processes, escalation procedures, and playbooks
Ensure all security operations processes are documented and followed
Manage the delivery of security awareness training
Investigate and respond to fraud reports
Report on security operations metrics and provide regular reports and dashboards to CISO identifying trends, risks, and areas for improvement
Ensure third-party security services meet SLAs, KPIs, and compliance/regulatory requirements
Liaise with the vulnerability analyst to identify all vulnerabilities potentially exploitable during an incident
Conduct post-incident reviews in collaboration with security incident handler and managed services to drive continuous improvement
Monitor evolving threat landscapes and recommend improvements to detection and response strategies
Coordinate information sharing activities with industry groups, government agencies, and other groups
Work with data security architect to implement various protocols and technologies.
We would love to hear from you if you have
Master’s degree in computer science, Engineering, Cybersecurity or a related field, or equivalent experience.
Five years of experience in Security Operations, Incident Response, or Threat Intelligence.
Strong knowledge of Cybersecurity principles, practices, and technologies such as: EDR/XDR; SOAR, SSE, CASB, DLP, SIEM; Email Security; AWS security, O365 security.
Experience in multi-cloud or hybrid infrastructure environments.
Direct experience managing or working closely with outsourced SOC/MDR vendors.
Knowledge of security standards and frameworks (ISO 27001:2013 / PCI-DSS / SOC2, NIST, MITRE ATT&CK).
Relevant IT certification (Security+, CISSP, GIAC, ECIH, OSCP, CEH, etc.) is an asset.
Travel Required: 10
Learn more about IATA’s role in the industry, our benefits, and the team at iata/careers/. We are looking forward tohearing from you!
#J-18808-Ljbffr