At Flight Centre Travel Group (FCTG) our purpose is to 'open up the world for those who want to see'. Every day, we give people all around the world the opportunity to experience something really amazing – travel!
The Information Security Officer role will lead Security, Compliance and Assurance activities in their business pillar within the organisation globally. You'll have a strong understanding of security and privacy principles, standards and frameworks, Information Security in contracts and a sound understanding of the regulatory environment affecting the business.
If you have a keen understanding of the business drivers affecting security, enjoy consulting with business leaders and other support businesses around Security within business operations, please apply!
Key Responsibilities:
Security Risk Management
1. Work with CISO, Risk and Business Leadership to identify risk exposure and assist in managing the security risk to the organisation within the risk appetite
2. Review and evaluate new security technologies and practices for introduction into the organisation to reduce risk
3. Implement a systematic and structured process for the identification and management of security risks within the scope of the individuals role
Security Governance and Risk Management
4. Lead the implementation and management of an internal and external audit and security testing program to validate compliance with security policy
5. Monitor new threats as they evolve and adjust risk management plans and security controls as necessary
6. Assess the security of 3rd parties with whom FCTG has a requirement to share information for business processes
7. Ensure regular meaningful security reporting occurs
Security Compliance and Assurance Management
8. Lead the design, implementation, operation and maintenance of the information security compliance and assurance management system for supply businesses as well as third party vendors
9. Assist the CISO with the maintenance of the FCTG security policy and standard framework
10. Lead the assessment of maturity and compliance to the FCTG security standards in Supply businesses.
11. Work with product and engineering teams to ensure products and applications are designed and implemented in line with security policy, and best practice
12. Work with business stakeholders to provide security guidance and input, creation of security documentation
13. Act as a co-ordination point around ongoing collation of assurance documentation and audit activity
14. Assist the CISO with Security and Compliance due diligence and onboarding as part of any merger and acquisition activity
Security Contract Management
15. Assist the CISO, Business and Internal legal teams in the review, markup and negotiation of the Information Security requirements in Supply contracts
16. Prepare written reports and in person briefings around areas of noncompliance and contribute to providing options to manage risks associated with non-compliance
17. Feed emerging security requirements into ongoing assurance activities to ensure ongoing compliance risks are known, owned and managed
Required experience:
18. 2+ years managerial experience in an information security leadership role
19. In-depth knowledge of Risk Frameworks such as ISO
20. In-depth knowledge of Security frameworks such as ISO/2, PCI DSS, SCA, SOC 2
21. Legal contract review experience
22. Experience and ability in creating meaningful security reporting
23. Undergraduate degree in Technology or Information Security or similar (desirable)
24. CISSP (desirable)
25. CISM (desirable)
Benefits:
26. Tick destinations off your bucket list with our discounts on travel and accommodation
27. Employee Share Scheme through Equate Plus
28. Access to in-house financial and health services, internal /7 gym and End-of-Trip Facility
29. Closing the Gender Gap in Super Balances! FCTG paid super contributions during parental leave & top up payments when Flightie parents return to work for the first 2 years!
30. Receive ongoing training and professional development
31. Hybrid working model
32. Preference for internal progression through Brightness of Future: Employees have the right to see a clear pathway to achieving career ambitions
33. Global career opportunities in a network of brands and businesses at your fingertips
34. Proud Corporate Social Responsibility platform through the Flight Centre Foundation, and Brighter Futures programs
35. Opportunity to attend global awards events, including Global Gathering (Las Vegas 2, Bali 3 and Lisbon 4)
36. Various social events to promote networking, the celebration of wins, and sometimes just for fun!
We value you...
Flight Centre Travel Group is committed to creating an inclusive and diverse workplace that supports your unique identity to create better, safer experiences for everyone. We encourage you to come as you are; to foster inclusivity and collaboration. We celebrate you.
Who we are...
Since our beginning, our vision has always been to open up the world for those who want to see.
As a global travel retailer, our people come from all different backgrounds, and our connections spread to the far reaches of the globe - + countries and counting! Together, we are a family (we call ourselves Flighties).
We offer genuine opportunities for people to grow and evolve. We embrace new experiences, we celebrate the wins, seize all opportunities, and empower all of our people to find their Brightness of Future.
We encourage you to DREAM BIG through collaboration and innovation, and make sure you are supported to make incredible ideas a reality. Together, we deliver quality, innovative solutions that delight our customers and achieve our strategic priorities.
Irreverence. Ownership. Egalitarianism
#LI-KC1#LI-Hybrid