Senior Information Security GRC Analyst
TUI Group is the world’s number one integrated tourism business. The Security Domain is a global team within TUI Technology responsible forleading Information Security risk management across TUI. TUI Technologyis a multi-disciplinary team of experts across Security, Architecture, Engineering, DevOps and Agile Delivery providing services across the UK, Ireland, Sweden, Norway, Denmark, Finland, Germany, Belgium and The Netherlands.
At TUI we’re ambitious to become the leader in technology within the travel industry and to achieve this we are looking to build a capable, creative team who want to be a part of accomplishing that goal.
We never stop looking ahead, seeking new ways to delight our customers and grow our business. We recognise the power of digital and the massive contribution this brings to creating a truly unique and differentiated customer experience.
We are looking for a talented and dedicated securityprofessional to join the Governance, Risk and Compliance (GRC)team whichsupports theSecurity Domain in their responsibility to ensure information security risks are managed in alignment to our business goals across TUI Group.
As aSeniorInformation Security GRC Analystyou will perform a crucial role in supporting the GRC team’s activities. The role will take the lead on supporting the day-to-day delivery of our compliance programmes and Information Security Management System (ISMS) within our technology domains. You will manage the implementation of the frameworks, processes and reporting associated with the technical checks and balances. This role will require strong technical compliance skill alongside strong stakeholder managementand influencingskills.
ABOUT THE JOB
As aSeniorInformation Security GRC Analyst, you will have experience in the day-to-day management, delivery and tracking of actions towards our assurance and compliance programmes. You will have knowledge andpractical experience of regulatory compliance activities (e.g. GDPR) and have a view on how delivery and tracking of compliance actions could be accomplished.
This role will also be responsible forfillingpolicy and standards gaps across the company.
The role will deliver regular reporting to senior stakeholders within the organisation to inform decision making and appropriate investment.
This role will directly assist in enabling TUI to meet its strategic goals. Specifically, you will be responsible for delivering the following:
- Management and reporting on the status and performance of assurance and compliance programmes.
- Owning the day-to-day operation of TUI’s application assurance and cyber resilience programmes.
- Prioritising and managing the workload between the GRC Analysts in the team.
- Managing the documentation workflow and producingpolicy, process and guidelines in the appropriate format by liaising with a wide range of stakeholders, driving the approval process and publishing the documents.
- Supporting the wider GRC team (including the Information Security Officers and Information Security Managers) on a variety of GRC-related activities.
- Managing the roadmap, prioritising and fillinggaps in policy, standards, procedures and frameworksworking with the wider GRC teamand subject matter experts.
- Building roadmaps for continued compliance against applicable standards.
- Becoming a subject matter expert to IT and the business to support delivery against the standards.
- Manage and mature the CMDB of compliance/governance assets.
Our information security team works in collaboration with business and IT teams across our many businesses. You will build strong working relationships influence others to do the right thing to Protect our Smile.
ABOUT YOU
- Significant experience with managing compliance or assurance activity in a large travel/web/retail organisation.
- Strong ability in prioritising a wide breadth of tasks based on both internal and external factors.
- Excellent communication skills, both written and oral.
- Ability to produce clear documentation in English.
- Excellent organisational skills and attention to detail.
- Information Security Audit skills and experience.
- Strong experience in a large-scale enterprise organisation, preferably a retail or financial organisation.
- Strong knowledge of ISO27001, GDPR and associated legislation.
- Excellent influencing skills.
- Excellent interpersonal skills including persuasiveness and/or assertiveness skills.
- Relevant security qualifications (e.g. CISM, CISSP, Security+, PCI P etc.) or equivalent qualifications a nice to have.
- Experience usingstandards and frameworks such as NIST, OWASP, ITIL and COBIT.
- Ability to understand the needs, objectives and constraints of those in other teams.
OUR OFFER
- Being a valuable team member of TUI, the No.1 global and socially aware travel company.
- Competitive salary and benefits.
- Smart working (Flexible hours) and possibility of working remotely up to 100% or Hybrid from one of our offices.
- Develop yourself as part of a friendly, richly, diverse virtual international team.
If you want to know more about why TUI Group is the world's leading tourism group, and our continuing work in the diversity & inclusion space, simply visit careers.tuigroup.com
#TUIjobs #LI-AR1 #LI-Remote
Verwandte Inhalte
-
Deine Karriere bei TUI Bei TUI schaffen wir unvergessliche Erlebnisse. gal, ob du gerne in der Luft, am Boden oder auf See arbeitest, ob du ein erfahrener Profi oder frisch aus der Schule bist – du wirst deine neue Karriere in einem unserer großartigen Teams finden.
-
Über TUI Wir sind Teamplayer*innen. Urlaubstraum-Erfüller*innen. Reiseinnovator*innen. Wir sind TUI, ein weltweit führender Touristikkonzern, der Urlaubsträume für Menschen auf der ganzen Welt wahr werden lässt.
-
Das beste Team, wenn's um Reisen geht Wir sind ein führendes globales Reise- und Freizeitunternehmen, aber unser echtes Ziel ist es, unvergessliche Urlaubserlebnisse für alle unsere Kunden zu schaffen. Zusammen mit über 65.000 Kollegen sind wir das beste Team in der Reisebranche.
-
-
-
-
-
-
Mit TUI auf Kreuzfahrt arbeiten Wir betreiben eine Flotte von 16 Kreuzfahrtschiffen und navigieren durch alle Herausforderungen, um unvergessliche Kreuzfahrterlebnisse zu schaffen, die unsere Gäste ein Leben lang in Erinnerung behalten werden.
-
Reisebüro und Call Center In unseren Reisebüros und Call Centern warten viele Karrieremöglichkeiten auf dich – Fernweh inklusive. Werde Teil der TUI-Familie und starte eine Karriere, die Urlauber*innenherzen höher schlagen lässt.
-
Globale Einstiegsprogramme Unsere Einstiegsprogramme gibt's rund um den Globus, und jeder Standort hat etwas anderes im Gepäck. Entdecke, was wir wo bieten.
-
Technik und Instandhaltung Ob es um die Beschaffung der nötigen Teile geht, die Einhaltung strenger Vorschriften oder um die Wartung – wir haben alles im Griff und tüfteln ständig daran, wie wir die Verfügbarkeit und Leistung unserer Flotte optimieren können.
-
Luftfahrt Starte deine Reise mit den TUI Airlines und entdecke eine Karriere über den Wolken. Unsere Crew sorgt dafür, dass jeder Urlaub mit einem Lächeln beginnt.
-
Jobs im Ausland Starte mit uns deine Traumkarriere im Ausland. Es warten unvergessliche Erlebnisse auf dich. Egal, ob du das Abenteuer suchst oder schon an einem unserer Reiseziele lebst – wir können es kaum erwarten, dass du bei uns eincheckst.
-
-
In den TUI-Unternehmensfunktionen arbeiten In den Unternehmensfunktionen von TUI dreht sich alles darum, unseren Gästen einen Spitzenurlaub zu ermöglichen. Hier kannst du wichtige Projekte anstoßen, finanzielle Ziele ins Visier nehmen oder unsere Mitarbeitenden auf ihrem Weg unterstützen.
-
Ausbildung - Studium - Praktikum Hier findest du alle Informationen zu Ausbildung, dualem Studium, Schüler- oder studentischem Praktikum bei der TUI Group.
-
-
-
Ausbildung Sport- und Fitnesskaufleute bei Robinson Hier findest du alle Informationen zu der Ausbildung für Sport- und Fitnesskaufleute bei Robinson.
-
Ausbildung Kaufleute für Büromanagement
-
-
Come as you are. This is how we do diversity and inclusion at TUI...
-
Ausbildung Dialogmarketing
-
Ausbildung E-Commerce
-
Ausbildung Fachinformatiker
-