Sabre Senior Information Security in Southlake, Texas

Req ID: 38141

Job Family: Information Technology/Software Development

Sabre is the global leader in innovative technology that leads the travel industry. We are always looking for bright and driven people who have a penchant for technology and want to hone their skills. If you are interested in challenging work, being part of a global team, and solving complex problems through technology, business intelligence and analytics, and Agile practices - then Sabre is right for you! It is our people who develop and deliver powerful solutions that meet the current and future needs for our airline, hotel, and travel agency customers.

Job Description

This role is a member of the Sabre Risk & Security organization and is responsible for the identification, analysis and evaluation of third-party risks and is primarily responsible for performing, reviewing, analyzing, and reporting on the results third-party risk assessments and contract reviews. The Senior Information Security will work with internal business units, third-parties, and risk and security management to analyze and report risks.

ESSENTIAL DUTIES AND RESPONSIBILITIES

Qualified candidates for this position will demonstrate the following key traits:

  • Perform and complete new and existing assessments on third-parties

  • Leverage and enhance Sabre third-party risk assessment tools and techniques that includes RSA Archer eGRC, questionnaires, evidence requirements, and interviews with third-parties and internal stakeholders to appropriately assess controls relating to security risk management, privacy and security policies and governance, organizational security, asset management, physical and environmental security, communications and security operations management, access controls of systems and applications, cryptography and encryption controls, information systems acquisition development and maintenance, third-party relationship management, vulnerability and threat management, incident event and communications management, business continuity and disaster recovery, compliance with regulatory and industry standards, cloud controls relating to infrastructure, platform, and software as a services

  • Conduct in-depth risk and security related assessments of new and existing third-parties leveraging questionnaires and evidence

  • Technical expertise to review a third-party‚Äôs controls and document in business terms the risks and recommendations to address the third-parties control deficiencies

  • Document the assessment details, findings, and overall risk in the company governance, risk and compliance (GRC) tool as well as a formal assessment report

Qualified candidates will also demonstrate expertise in the following technical areas:

  • Strong written, and verbal communication skills, strong presentation skills to communicate risks to multiple audiences with varying technical skillsets

  • Highly organized, self-motivated, and ability to manage multiple assessments at once

  • Deep analytical capabilities to appropriately analyze risk and report areas of concern

Job Requirements

EDUCATION: Bachelor's degree or Computer Science degree or equivalent

EXPERIENCE:

  • Minimum of 3 years of professional experience in Information Security, Procurement, Internal Audit, or Contract Management

  • Sound judgment, decision-making abilities, and problem-solving skills

  • Excellent interpersonal, communication (both written and verbal), and organizational skills

  • Experience with recognized standards and risk management frameworks such as HITRUST, ISO2700x, COBIT, PCI-DSS, ITIL, NIST CSF, TOGAF, etc.

  • Hands-on experience with developing and managing Third Party Governance solutions and applications using RSA Archer eGRC is preferred

  • Hands-on experience with ServiceNow is preferred

  • Current CISSP, CRISC, CISA, CISM, or equivalent certifications are preferred or a commitment to become certified within 12 months of employment

Reasonable Accommodation

Sabre is committed to working with and providing reasonable accommodation to applicants with disabilities. Applicants applying for a Sabre position with a disability who require a reasonable accommodation for any part of the application or hiring process may contact Sabre's Employee Relations Department at employee.relations@sabre.com

Affirmative Action

Sabre is an equal employment opportunity/affirmative action employer and is committed to providing equal employment opportunities to minorities, females, veterans, and disabled individuals. EEO IS THE LAW at http://www.eeoc.gov/employers/upload/posterscreenreader_optimized.pdf

Stay connected with Sabre Careers