Senior Information Security GRC Analyst
TUI Group is the world’s number one integrated tourism business. The Security Domain is a global team within TUI Technology responsible forleading Information Security risk management across TUI. TUI Technologyis a multi-disciplinary team of experts across Security, Architecture, Engineering, DevOps and Agile Delivery providing services across the UK, Ireland, Sweden, Norway, Denmark, Finland, Germany, Belgium and The Netherlands.
At TUI we’re ambitious to become the leader in technology within the travel industry and to achieve this we are looking to build a capable, creative team who want to be a part of accomplishing that goal.
We never stop looking ahead, seeking new ways to delight our customers and grow our business. We recognise the power of digital and the massive contribution this brings to creating a truly unique and differentiated customer experience.
We are looking for a talented and dedicated securityprofessional to join the Governance, Risk and Compliance (GRC)team whichsupports theSecurity Domain in their responsibility to ensure information security risks are managed in alignment to our business goals across TUI Group.
As aSeniorInformation Security GRC Analystyou will perform a crucial role in supporting the GRC team’s activities. The role will take the lead on supporting the day-to-day delivery of our compliance programmes and Information Security Management System (ISMS) within our technology domains. You will manage the implementation of the frameworks, processes and reporting associated with the technical checks and balances. This role will require strong technical compliance skill alongside strong stakeholder managementand influencingskills.
ABOUT THE JOB
As aSeniorInformation Security GRC Analyst, you will have experience in the day-to-day management, delivery and tracking of actions towards our assurance and compliance programmes. You will have knowledge andpractical experience of regulatory compliance activities (e.g. GDPR) and have a view on how delivery and tracking of compliance actions could be accomplished.
This role will also be responsible forfillingpolicy and standards gaps across the company.
The role will deliver regular reporting to senior stakeholders within the organisation to inform decision making and appropriate investment.
This role will directly assist in enabling TUI to meet its strategic goals. Specifically, you will be responsible for delivering the following:
- Management and reporting on the status and performance of assurance and compliance programmes.
- Owning the day-to-day operation of TUI’s application assurance and cyber resilience programmes.
- Prioritising and managing the workload between the GRC Analysts in the team.
- Managing the documentation workflow and producingpolicy, process and guidelines in the appropriate format by liaising with a wide range of stakeholders, driving the approval process and publishing the documents.
- Supporting the wider GRC team (including the Information Security Officers and Information Security Managers) on a variety of GRC-related activities.
- Managing the roadmap, prioritising and fillinggaps in policy, standards, procedures and frameworksworking with the wider GRC teamand subject matter experts.
- Building roadmaps for continued compliance against applicable standards.
- Becoming a subject matter expert to IT and the business to support delivery against the standards.
- Manage and mature the CMDB of compliance/governance assets.
Our information security team works in collaboration with business and IT teams across our many businesses. You will build strong working relationships influence others to do the right thing to Protect our Smile.
ABOUT YOU
- Significant experience with managing compliance or assurance activity in a large travel/web/retail organisation.
- Strong ability in prioritising a wide breadth of tasks based on both internal and external factors.
- Excellent communication skills, both written and oral.
- Ability to produce clear documentation in English.
- Excellent organisational skills and attention to detail.
- Information Security Audit skills and experience.
- Strong experience in a large-scale enterprise organisation, preferably a retail or financial organisation.
- Strong knowledge of ISO27001, GDPR and associated legislation.
- Excellent influencing skills.
- Excellent interpersonal skills including persuasiveness and/or assertiveness skills.
- Relevant security qualifications (e.g. CISM, CISSP, Security+, PCI P etc.) or equivalent qualifications a nice to have.
- Experience usingstandards and frameworks such as NIST, OWASP, ITIL and COBIT.
- Ability to understand the needs, objectives and constraints of those in other teams.
OUR OFFER
- Being a valuable team member of TUI, the No.1 global and socially aware travel company.
- Competitive salary and benefits.
- Smart working (Flexible hours) and possibility of working remotely up to 100% or Hybrid from one of our offices.
- Develop yourself as part of a friendly, richly, diverse virtual international team.
If you want to know more about why TUI Group is the world's leading tourism group, and our continuing work in the diversity & inclusion space, simply visit careers.tuigroup.com
#TUIjobs #LI-AR1 #LI-Remote
Contenu connexe
-
Votre carrière chez TUI Peu importe votre métier ou à quoi ressemblent vos journées. Si tu aimes travailler dans les airs, sur terre ou en mer, que tu sois un pro expérimenté ou que tu viennes de terminer tes études, tu trouveras ta nouvelle carrière dans l'une de nos équipes géniales.
-
À propos de TUI Nous travaillons en équipe. Nous créons des vacances de rêve. Nous innovons.Nous sommes TUI, entreprise leader du voyage et des loisirs, et nous réalisons les rêves de vacances de nos clients, partout dans le monde.
-
Les meilleurs compagnons de voyage Nous sommes une entreprise mondiale leader dans le domaine des voyages et des loisirs, mais notre vraie mission est de créer des expériences de vacances inoubliables pour tous nos clients. Avec plus de 65 000 collègues, nous formons la meilleure équipe dans le secteur du voyage.
-
-
Imprint Find our imprint here.
-
-
-
-
Travailler pour les croisières TUI Nous exploitons une flotte de 16 navires de croisière et naviguons à travers tous les défis pour offrir des expériences de croisière inoubliables que nos invités se remémoreront toute leur vie.
-
Agences de voyages et centres de relation client De nombreuses opportunités de carrière vous attendent dans nos agences de voyages et centres d'appels – l'envie de voyager incluse. Devenez membre de la famille TUI et démarrez une carrière qui fera battre le cœur des vacanciers.
-
Programmes internationaux de début de carrière Nos programmes d'entrée sont disponibles dans le monde entier, et chaque site a quelque chose d'unique à offrir. Découvrez ce que nous proposons et où.
-
Ingénierie et maintenance Qu'il s'agisse de l'acquisition des pièces nécessaires, du respect des réglementations strictes ou de la maintenance – nous avons tout sous contrôle et travaillons constamment à optimiser la disponibilité et la performance de notre flotte.
-
Compagnie Aérienne Embarquez pour un voyage avec TUI Airline, où la passion a rendez-vous avec le ciel! Notre équipe très diverse contribue aux plus beaux voyages en s’assurant que les vacances de nos clients commencent avec le sourire.
-
Emplois à l’étranger Commencez avec nous la carrière de vos rêves à l'étranger. Des expériences inoubliables vous attendent. Que vous soyez en quête d'aventure ou déjà résident d'une de nos destinations, nous avons hâte de vous accueillir parmi nous.
-
Fonctions supports Chez TUI, nos fonctions d'entreprise sont axées sur la création de vacances exceptionnelles pour nos invités. Ici, vous pouvez lancer des projets importants, viser des objectifs financiers ou soutenir nos collaborateurs dans leur parcours.
-
Technologie, digital et data Des innovations dans le secteur du voyage ? Notre équipe technique s'en charge ! Que vous soyez passionné par le développement logiciel, l'analyse de données, le design UX/UI ou la cybersécurité – chez TUI, vous trouverez la plateforme idéale pour lancer votre carrière.