English
English

Senior Cyber Security Engineer

Auto req ID: 6983BR

Category: Technology

Employee type: Regular - Full Time

Description

Travelport are the only true travel commerce platform in the world. We are specialist solution providers and are committed to building leading technology that makes the experience of buying and managing travel continually better for the global travel and tourism industry. Come and be part of our mission to make sure that every trip is powered by Travelport…

Role & Team

Support the software security group with initiatives to ensure secure coding practices are integrated into the SDLC.  This will include implementing, testing and operating advanced software security techniques in compliance with Travelport’s polices and standards and technical reference architecture

Team Culture:

  • We are very sociable; we like to work hard and play harder. We like to collaborate effectively and work together on projects to their completion. There will be requirements to complete software assessments as an individual effort, but the team supports each other when challenges arise.

This Senior Cyber Security Engineer role will involve…

  • Analyze, consult, and champion the secure design and implementation of new and existing Travelport products and applications;

  • Support secure coding efforts in coordination with development teams involving continuous integration, manual code reviews, automated code scans using security analysis tools to identify vulnerabilities in source code, prioritize those vulnerabilities, propose solutions, and then coordinating remediation with development team;

  • Perform on-going security testing and code review and coordinate remediation efforts with development teams to improve software security;

  • Conduct hands-on security testing, analyze test results, document risks, and recommend mitigating controls;

  • Contribute to the development and maintenance of Travelport’s information security strategy, policies and procedures;

  • Perform security design review, threat modeling and architectural/system security assessments to ensure that solutions are being designed with a minimal degree of technical risk;

Come and join us…

To ensure we achieve our goal, you will join us in embracing our core values;

  • Be a player, not a spectator; You will take ownership and make things happen.

  • Think we, not me; We are One Travelport, collaborating to succeed.

  • Keep it simple; We’re straightforward and easy to do business with.

  • Build for tomorrow; You will challenge the norm, aim high and lead change.

You’ll be an innovator, passionate, accountable and solutions focused, not to mention adaptable, hungry for a challenge and an individual who thrives on partnering. All of these combined with the below capabilities are what will make us such a bold and compelling organisation.

About You;

  • CISSP or equivalent certification

  • Application or software security certifications are preferred, such as CSSLP, GIAC GWEB, GWAPT, GSSP-Java, GSSP-.NET etc.

  • Bachelor’s degree Computer Science, Management Information Systems, Information Security or related field plus 5 years of experience years in Software Security, Information Security Governance, Privacy and Regulatory Compliance, or Cyber Security.

  • 3+ years of experience with software development lifecycle and the software development techniques and/or mobile application development

  • 3+ years of experience with PCI compliance and remediation, data protection and risk assessments

  • Considerable expertise with application/software security procedures, performing software or application assessments, and assisting development teams with software vulnerability remediation

  • Must possess excellent verbal and written communication decision-making, interpersonal and analytical skills

  • Must possess in-depth, hands-on experience with two or more of the following: Java, C, C++, C#, ASP.Net, Swift, Objective C, Kotlin, Groovy

  • Considerable knowledge and experience with both dynamic testing and static code analysis tools such as Whitehat, Fortify, WebInspect, Checkmarx, Veracode, etc.

If this sounds like you, we’d love for you to get in touch.

What’s in it for you?

You will receive a competitive salary & benefits package accompanied with the opportunity to work in a fast-paced, dynamic and progressive organisation that cares about its people and promotes innovation.
We are an equal opportunity employer and value diversity at our company. We do not discriminate based on race, religion, colour, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.
 

 

Posted: August 12, 2019