Employment Type: Permanent
Contract Duration:
About the team you are joining
Part
of the Information and Data (I&D) Division, Data Governance team works to define
and implement state-of-the-art data practices within our organization to make
data and analytics more accessible, trustworthy, and actionable. Our goal is to maximizes the investment in
data and analytics initiatives by promoting the proper use of analytics in
business processes, ensuring accurate insights based on quality data, reducing
risks with security, and guiding the prioritization of projects so the right
information is available at the right time.
What your day would be like
As a Data Security Architect, you are expected to have a deep knowledge of a broad
range of information security controls to protect data stores on-premises and
in the cloud (including data stored in Microsoft 365, IATA file servers, S3
buckets, database applications or stored functions, the database systems, the
database servers, the data lake, machine learning pipelines) against any risk
that might impact IATA including but not limited to compromises of their confidentiality,
integrity, and availability, breach of Digital Rights or noncompliance with
data residency or privacy requirements.
The responsibilities of the Data Security Architect will be:
- Define objectives, technical work, and timeline for developing data security and protection architectures, roadmaps, and requirements;
- Collaborate with Information Security Team to draft new and amend existing internal data security and protection policies, guidelines, and procedures, in consultation with key stakeholders;
- Work with business stakeholders to identify risks associated with data and agree on risk management strategies (Accept, Mitigate, Transfer);
- Design and implement the agreed protection plan by implementing the technical controls, to ensure the management of all significant data security and privacy risks and elimination of the redundant security capabilities;
- Develop and deliver training sessions and provide data protection guidance to the employees;
- Communicate progress, findings and provide reports for monitoring, compliance and audit purposes;
- Develop and apply data security & privacy best practices into all projects that collect, process, store, and disseminate consumer data;
- Evaluate the existing data protection framework to identify areas of no or partial compliance, and propose solutions to rectify any issues;
- Work with application owners and Privacy Teams to develop and deploy industry best practices for management authentication and authorization to customer data;
Architect and engineer data protection mechanisms for data at rest and data in transit;
- Deploy security best practices for interface integrations between data origin, data lake, data consumers as well as supporting middleware;
- Work with Global Security Team to audit user permissions, monitor and mitigate risks to the data store;
- Promote a culture of data protection and compliance across all business units of the organization;
- Promote data governance and
data quality principles.
We would love to hear from you if
- Master’s degree in computing related discipline plus relevant work experience or relevant work experience;
- 5 years+ of cyber security experience working on data security policy enforcement;
- Solid experience with regulatory compliance and information security management frameworks;
- Experience of the implementation of security architectures and roadmaps, in large enterprises or international organizations;
- Expert knowledge of a broad range of data protection and information security controls to shield on-premises and AWS based data storage;
- Experience with AWS architectures and implementations such as Kubernetes, Snowflake or Talend;
- Proficient with security controls and countermeasures including practical experience with identity management, cyber-security, and IT processes / solutions;
- Fluent reading, writing and speaking abilities in English.
Travel Required: N
Diversity and Inclusion are one of our key priorities and we want to role model it. We are committed to building a team that represents a variety of backgrounds, perspectives and skills in which you can contribute at your best and be who you are. The more inclusive we are, the better we will be able to thrive to represent, lead and service the airline industry. If there is anything we can do to create a more comfortable interview experience for you, please let us know.
Learn more about IATA’s role in the industry, our benefits, and the team at iata/careers/. We are looking forward to hearing from you!