Talent.com
This job offer is not available in your country.
Principal Specialist - Information Security

Principal Specialist - Information Security

AmadeusBangalore
6 days ago
Job description

Job Title

Principal Specialist - Information Security

Purpose of the Role

Working in close collaboration with Amadeus security teams (GSOC, TISO, BISO), the successful candidate will be responsible for analyzing security challenges across the Self-Service software stack and designing solutions that align with Amadeus security standards. This role is critical in identifying gaps where current applications may not follow a defined security framework and proposing secure, scalable, and compliant architectures to address them.

As a member of the Engineering Security team, the candidate will work closely with development teams and software architects to translate problem statements into actionable security designs. The ultimate goal is to bridge the gap between current practices and Amadeus’ security standards, enabling secure software delivery across the Self-Service portfolio.

Main Responsibilities

  • Analyze security challenges within the Self-Service application stack and design solutions that align with Amadeus security standards, ensuring proposed architectures are secure, scalable, and compliant. The role focuses on translating problem statements into actionable, standards-based security designs, in close collaboration with implementation teams.
  • Provide expert guidance on security architecture, leveraging strong knowledge of security concepts, secure coding principles, and application development.

Contribute to the evolution of internal security governance, including architecture strategy, risk analysis processes, and cross-functional collaboration.

  • Represent the Security Office within the R&D organization, acting as the primary liaison for all security-related initiatives in the Self-Service domain.
  • Lead the security epic within the SAFe Agile Release Train (if applicable), driving security integration across development cycles.

  • Advise on cloud security controls, both at the application and operational levels, ensuring secure deployment and operations in cloud environments.
  • Collaborate with BISO and TISO teams to maintain the security risk register and define mitigation plans for identified risks.

  • Own and manage reporting and governance tasks related to the Secure Development Lifecycle (SDL) and compliance programs, ensuring alignment with Amadeus standards.
  • Conduct and facilitate threat modeling exercises for applications in scope, in collaboration with TISO office security managers.

    Provide second-level support to White Hat teams, offering expert guidance on security-related issues and promoting secure coding practices.

    Promote security awareness within the engineering organization through training, communication, and active participation in awareness initiatives.

    Stakeholders

    Heads of departments (Occasionally)

    Product Development Teams (Often)

    Delivery and Support Teams (Very Often)

    Sales Teams (Occasionally)

    Client Project Managers (Occasionally)

    Client Delivery Team (Occasionally)

    Education

    Tertiary qualification in Information Technology, Software Engineering or similar discipline

    Relevant Work Experience

  • Proven experience in implementing Single Sign-On (SSO) solutions across both new and legacy systems.
  • Hands-on experience with Multi-Factor Authentication (MFA) integration in diverse application environments.
  • Experience deploying and managing Privileged Access Management (PAM) systems.
  • Strong background in IT security design and assessment, including architecture reviews and risk evaluations.
  • Experience working with cloud platforms (e.g., AWS, Azure, GCP) and on-premises data centers, ensuring secure infrastructure and operations.
  • Familiarity with Windows and Linux environments, including system hardening and secure configuration practices.
  • Desirable but not essential :

  • Experience working with Amadeus systems or platforms.
  • Exposure to aviation industry systems, particularly in the area of passenger processing.
  • Business Understanding

    Working on access management systems for a large suite of systems and applications.

    Skills

    Computing : Proficiency in AWS and cloud-based infrastructure security.

    Strong foundation in IT Security principles, including identity and access management, secure architecture, and compliance.

    Experience with Identity Management systems, including SSO, MFA, and PAM.

    Languages : No specific programming language is required, though familiarity with languages such as C#, Python, or others commonly used in-house is beneficial.

    Other : Communication & Collaboration

  • Excellent verbal, written, and presentation skills, with the ability to articulate complex security concepts in both technical and business terms.
  • Strong interpersonal skills, with the ability to influence, motivate, and gain buy-in from diverse stakeholders.
  • Proven ability to collaborate across multiple teams in a matrixed or cross-functional environment.
  • Personal Attributes

  • A self-starter with a proactive, “can-do” attitude and a strong client focus.
  • Demonstrates a high level of ownership and accountability for deliverables and outcomes.
  • Meticulous work ethic, with strong attention to detail and a commitment to quality.
  • Competencies

  • Learn in detail the technical capabilities of our line of products and produce a solution that meets the customer requirements. Prepare documentation that clearly describes the components of the solution and how it integrates into the clients infrastructure and processes.
  • Be able to gather and interpret client's non-functional requirements and business volumes to determine the sizing of the components of the solution. This includes network bandwidth, latency, reliability, server size and number.
  • Be able to understand and apply Amadeus security policies, standards, and architectural blueprints when designing solutions. Be able to incorporate these requirements into secure architectures and demonstrate how they are met. Be able to align proposed solutions with industry best practices, such as the AWS Well-Architected Framework and Azure Well-Architected Framework, while maintaining awareness of current security and privacy standards and technologies.
  • Be able to understand the organisations existing enterprise architecture and work within it. Where necessary be able to expand and refine the enterprise architecture then document and communicate this to the organisation.
  • Understanding of the bid and proposal process. Able to assist sales team to deliver strong proposals with good margins, low technical risk, strong business value and that highlight our product strengths. Understand how to build long term customer relationships.
  • The solution architect should always be observing how we can improve our products through the design, delivery and support phases of each project. Be able to design and propose product improvements.
  • A solution architect working in the airport / airline space needs to be able to understand and design at a mid to high level networking that spans multiple organisations.
  • Ideally the solution architect will have as much experience in the airline / airport field as possible or in related fields.
  • Be able to design both back end and front end applications. Produce documentation for use by implementors and end users.
  • Be able to design high level web applications and choose the appropriate frameworks / libraries for their implementation
  • Be able to use and design API's for internal and external use. In particular be able to design around ReSTFul and Microservices principles to ensure these are easily consumed and maintainable.
  • Produce high quality documentation and diagrams that are clear and concise. Able to present well and handle customer questions.
  • Diversity & Inclusion

    Amadeus aspires to be a leader in Diversity, Equity and Inclusion in the tech industry, enabling every employee to reach their full potentialby fostering a culture of belonging and fair treatment, attracting the best talent from all backgrounds, and as a role model for an inclusive employee experience.

    Amadeus is an equal opportunity employer. All qualified applicants will receiveconsideration for employment without regard to gender, race, ethnicity, sexual orientation, age, beliefs, disability or any other characteristics protected by law.

    Create a job alert for this search

    Information Security Specialist • Bangalore

    Related jobs
    Information Security Engineer

    Information Security Engineer

    ObjectwaysBengaluru, Karnataka, India
    The Information Security Engineer role will be responsible for the automation of delivery of network security in the public cloud initiatives globally within American Express.This will be an integr...Show moreLast updated: 12 days ago
    • Promoted
    Information Technology Security Analyst

    Information Technology Security Analyst

    Turnberry SolutionsBengaluru, IN
    Automate evidence collection and control testing processes using scripting tools (e.Develop scripts and queries to analyze datasets, identify anomalies, and validate data integrity.Build and mainta...Show moreLast updated: 1 day ago
    Manager Information Security

    Manager Information Security

    Greenway HealthGreater Bengaluru Area, India
    The role involves developing and implementing application security policies, standards, and procedures across the organization, overseeing vulnerability management processes, and collaborating with...Show moreLast updated: 12 days ago
    Principal Specialist - Information Security

    Principal Specialist - Information Security

    ScaleneWorksBengaluru, Karnataka, India
    Quick Apply
    Represent the security office in the RnD organisation.Works with development and architect teams to propose solutions that follow the Amadeus standards. Communicate with BISO / TISO to present solutio...Show moreLast updated: 30+ days ago
    • Promoted
    Head of Information Security

    Head of Information Security

    Bangalore International Airport LtdBengaluru, Karnataka, India
    Kempegowda International Airport, Bengaluru (KIAB / BLR Airport), named after founder of the City – Hiriya Kempegowda – has the unique distinction of being the first Greenfield Airport in India, est...Show moreLast updated: 1 day ago
    • Promoted
    Information Security Analyst - Security Operations Center

    Information Security Analyst - Security Operations Center

    Savantis Solutions India Pvt.Ltd.Bangalore
    We are hiring for one of our clients.Job Title : Information Security Analyst - SOC Experience : 4+ Years Du...Show moreLast updated: 30+ days ago
    • Promoted
    • New!
    Amadeus Labs - Principal Specialist - Information Security

    Amadeus Labs - Principal Specialist - Information Security

    Amadeus LabsBangalore
    Job Title : Principal Specialist Information Security Purpose of the Role : Working in close ...Show moreLast updated: 15 hours ago
    Information Security Lead

    Information Security Lead

    SmartQBengaluru, Karnataka, India
    Are you passionate about cybersecurity and data security? If your answer is a resounding yes, then we are hunting for you. As an Information Security Lead, your primary role will be to play a crucia...Show moreLast updated: 12 days ago
    • Promoted
    Information Security Manager

    Information Security Manager

    Scrut AutomationBengaluru, Karnataka, India
    Job Description : Information Security Manager.Position : Information Security Manager.Scrut Automation is a one-stop shop for infosec compliance. It supports IT / ITES / SaaS companies in automating thei...Show moreLast updated: 1 day ago
    • Promoted
    Technical Manager - Information Security

    Technical Manager - Information Security

    InOpTra DigitalBangalore
    Technical Manager Exp : 12 to 15 years Joining date : Can be flexible.Technical Manager In...Show moreLast updated: 24 days ago
    Information Security Risk Specialist

    Information Security Risk Specialist

    Acesoft Labs India PvtBangalore, KA, India
    Quick Apply
    Description : Show moreLast updated: 1 day ago
    Information Security Specialist - GRC

    Information Security Specialist - GRC

    CTEINDIA
    We are seeking GRC Certified Engineer in the IT services Energy domain to ensures compliance with governance, risk, and cybersecurity regulations specific to the energy sector, including NERC CIP,...Show moreLast updated: 30+ days ago
    Manager, Information Security

    Manager, Information Security

    LinkedInBengaluru, Karnataka, India
    LinkedIn was built to help professionals achieve more in their careers, and everyday millions of people use our products to make connections, discover opportunities and gain insights.Our global rea...Show moreLast updated: 12 days ago
    Information Security Analyst

    Information Security Analyst

    EurofinsBengaluru, Karnataka, India
    Manage the continuous improvement of the existing endpoint security solutions and log collection and treatment tools in accordance with the relevant internal policies. Development maintenance and tr...Show moreLast updated: 27 days ago
    Chief Information Security Officer - Principal Cybersecurity Architect

    Chief Information Security Officer - Principal Cybersecurity Architect

    Hewlett Packard EnterpriseINDIA
    Chief Information Security Officer - Principal Cybersecurity Architect.This role has been designed as Onsite with an expectation that you will primarily work from an HPE partner / customer office.Hew...Show moreLast updated: 30+ days ago
    Information Security Engineer- ISMAP

    Information Security Engineer- ISMAP

    Epergne SolutionsBengaluru, Karnataka, India
    Quick Apply
    Epergne Solutions is looking for.This role will drive the execution of global SaaS compliance and certification strategy using common Cloud Controls Framework (CCF) to meet customer and regulatory ...Show moreLast updated: 30+ days ago
    Head of Information Security

    Head of Information Security

    SigmoidBengaluru, Karnataka, India
    Develop, implement and monitor a strategic, comprehensive enterprise information security and IT risk management program. Work directly with the business units to facilitate risk assessment and risk...Show moreLast updated: 12 days ago
    Information Technology Security Architect

    Information Technology Security Architect

    IDFC FIRST BankBengaluru, Karnataka, India
    Location - Mumbai / Bangalore / Chennai / Hyderabad.As a Security Architect, you will play a pivotal role in designing, implementing, and maintaining the organization’s security across multiple projects....Show moreLast updated: 12 days ago