Sr Information Security Engineer

CWT is one of the world's leading digital travel management companies and as a Business-to-Business-for-Employees (B2B4E) travel management platform, companies and governments rely on us to keep their people connected - anywhere, anytime, anyhow - and across six continents, we provide their employees with innovative technology and an efficient, safe and secure travel experience.

Our Product and Technology division was formed to lead our CWT 3.0 digital transformation strategy. With a team of highly skilled and experienced individuals, they deliver and manage efficient, quality, and innovative travel technology solutions and technology services for CWT and its customers worldwide

Position Overview

• Reporting to the Sr. Director of Cyber Security, the Security Architect is responsible for understanding complex business information technology needs specifically focused on the information security sector.
• This position requires a creative self-starter who has the ability to think through a project from start to finish and has the technological vision to support the security needs of the enterprise.
• This position also requires knowledge of and expertise in various operating systems, software systems, hardware, and network configurations.
• Also works cross-functionally with various teams, including enterprise architecture, application support, development, and quality assurance by addressing technical issues related to information security.
• This individual will also support the disaster recovery (DR) program and planning. They will work across business and product teams to manage the DR program

Description

1. Establishes a strategic for security architecture, including standards and frameworks that are aligned with the overall enterprise and Information Technology strategies through relationships with the various Technology teams, auditors, and other stakeholders throughout the enterprise.

2. Ensures systems and applications are implemented with compensating controls to meet regulatory requirements (GDPR and California Consumer Privacy Act (CCPA) as well as other enterprise compliance such as PCI DSS, SOC, Cyber Essentials, NIST, etc. requirements.

3. Delivers on key metrics set for the information security program are consistently achieved

4. Reviews business context for solutions to enterprise challenges as well as defines the vision and requirements for the solution. Recommends potential solutions (which include Request for Information (RFI), Request for Proposal (RFP) or application development), selects the optimal solution and develops the roadmaps, policies, and standards.

5. Participate and at times lead role in responses to RFI/RFP for clients/vendors, audits, and policy exception process.

6. Collaborates with enterprise architecture and application development to enhance the security posture of new and existing systems.

7. Maintains current job knowledge by tracking and understanding emerging security practices and standards, participating in educational opportunities, reading professional publications, maintaining personal networks, and participating in professional organizations.

8. Performs other duties as assigned to support the efficient operation of the department. Assumes other responsibilities, duties, tasks, and assignments that contribute to the mitigation or response to security threats

#LI-Hybrid

• Minimum of 10 years of experience in a technology-related field, with a strong focus in performing Information Security related activities.
• Knowledge of industry security management practices
• Knowledge of various emerging technologies and adoption of security compliance initiatives to secure data
• Knowledge of security-related government regulatory requirements and emerging trends and issues
• Extensive experience with management, leadership, ability to motivate, decision making, management, written and verbal communication, interpersonal communication, problem solving, analytical thinking, and time management
• Demonstrated consulting skills with change management concepts and strategies, including communication, culture change, and performance measurement system design
• Knowledge of risk data architecture and technology solutions
• Internally and externally recognized subject matter expert who influences the way things are done
• Bachelor's or master's degrees
• US CWT accepts Military experience/certifications as substitutes for some requirements.
• Salary Range: between USD 100,00 - USD 135,00 yearly.

Desired Skills

Leadership

• Highest personal and professional integrity and strong work ethics
• Ability to articulate a vision of transformation efforts and a sense of mission
• Willingness to take change and provide direction
• Results orientation, willingness to commit to a direction, and drive operations to completion
• Demonstrated ability to manage adversity and challenging situations

Relationship Management

• Ability to manage senior relationships across all CWT organizations
• Ability to develop cooperative and constructive working relationships
• Ability to handle complaints, settle disputes, resolve conflicts, and negotiate with others
• Collaborative team player orientation towards work relationships, strong culture awareness

Project Oversight and Decision Making

• Highly developed skills in priority setting and alignment of project priorities with Departmental strategy
• Ability to break down complex problems and projects into manageable goals
• Ability to get to the heart of the problem and make sound and timely decisions to resolve problems

Because this position is directly with our United States Federal Government client, the United States government requires that the successful candidate be a US Citizen. Authorization to work in the US is not sufficient for this position. Additionally, you will be subject to a company and government background investigation, including acriminal history and credit record review.

To the extent this position enables access to traveller personal identifiable information (PII) as defined by the U.S. Government or vital trust data as defined by CWT, then the individual is required to adhere to all government required and/or company mandated information security policies and regulations. The individual is also required to take all information security and Privacy Act training required by the Government and/or company. The individual is required to safeguard any such information and in the event of any improper disclosure to company officials in accordance with applicable information security policies or regulations.

CWT is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, disability, age, or veteran status.

CWT also offers opportunities to all job seekers, including job seekers with disabilities. If you need a reasonable accommodation to assist with your job search or application for employment, please contact us by sending an email toTalentAcquisitonAmericas@mycwt.com. In your email, please include a description of the specific accommodation you are requesting and a description of the position for which you are applying.