Spectraforce Technologies - North Chicago, IL

posted about 2 months ago

Full-time - Mid Level
Remote - North Chicago, IL
Administrative and Support Services

About the position

The Cyber Security Audit and Risk Management Specialist role is a critical position within the organization, focusing on enhancing the cybersecurity posture of the airline industry. The selected candidate will be responsible for conducting comprehensive audits and implementing risk management strategies tailored to the unique challenges faced by the airline sector. This role requires a deep understanding of aviation-specific regulations and standards, ensuring compliance with guidelines set forth by organizations such as the International Air Transport Association (IATA). The specialist will collaborate with various departments to safeguard the integrity, confidentiality, and availability of information assets, thereby playing a vital role in the organization's overall security framework. In this position, the specialist will plan, conduct, and manage both internal and external cybersecurity audits, assessing the effectiveness of existing security controls. They will evaluate compliance with industry standards and best practices, documenting audit findings and preparing detailed reports to present to management. The role also involves identifying, assessing, and prioritizing cybersecurity risks specific to the airline industry, participating in risk assessments, and advising on various engagements. The specialist will ensure that security policies are effectively communicated and enforced across the organization, while also staying informed about emerging threats, vulnerabilities, and regulatory changes that may impact the airline sector. The ideal candidate will possess a strong analytical mindset, excellent communication skills, and the ability to work independently as well as part of a team in a fast-paced environment. A commitment to maintaining the highest standards of security is essential, along with a proactive approach to enhancing the organization's cybersecurity measures.

Responsibilities

  • Plan, conduct, and manage internal and external cybersecurity audits tailored to the airline industry, assessing the effectiveness of security controls.
  • Evaluate compliance with industry standards, regulations, and best practices, including aviation-specific standards such as the International Air Transport Association (IATA) guidelines.
  • Document audit findings, prepare detailed reports, and present recommendations to management.
  • Identify, assess, and prioritize cybersecurity risks specific to the airline industry.
  • Participate in risk assessments and act as an advisor on some engagements.
  • Ensure that security policies are communicated effectively to all employees and are enforced consistently across the organization.
  • Stay informed about new and emerging threats, vulnerabilities, and regulatory changes that may impact the airline industry.

Requirements

  • Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field or 4 years of additional experience in the field.
  • 3-5 years of experience in cybersecurity.
  • Experience conducting cybersecurity audits or risk evaluation.
  • Familiarity with cybersecurity frameworks, standards, and regulations (e.g., IATA, NIST, ISO 27001).
  • Strong understanding of information security principles, practices, and technologies.
  • Experience with security tools and technologies such as SIEM, vulnerability management systems, firewalls, and intrusion detection systems.
  • Proficiency in risk management methodologies and tools.
  • Familiarity with cloud security, network security, and endpoint protection.
  • Relevant cybersecurity certifications (e.g., CISSP, CISA, CRISC, CISM, OSCP, CEH) are highly desirable.
  • Strong analytical and problem-solving skills.
  • Strong people skills.
  • Excellent communication and report-writing skills, with the ability to convey complex information to both technical and non-technical audiences.
  • Ability to work independently and as part of a team in a fast-paced environment.
  • Strong attention to detail and a commitment to maintaining the highest standards of security.

Nice-to-haves

  • Specific experience with cybersecurity challenges and solutions in the airline industry.
  • Consulting or advising experience.
  • Experience with GRC (Governance, Risk, and Compliance) tools and platforms.
  • Hands-on experience in ethical hacking or on Red Team tools.
  • Experience with penetration testing or vulnerability exploitation.
  • Experience in cloud security, identity management, vulnerability management, incident response, or similar field.
  • Experience in a large-scale enterprise environment.
  • Proven experience in the airline industry, with a deep understanding of its unique cybersecurity challenges and regulatory requirements.

Benefits

  • ACA compliant health benefits
  • Dental insurance
  • Vision insurance
  • Accident insurance
  • Critical illness insurance
  • Voluntary life insurance
  • Hospital indemnity insurance
  • Commuter benefits
  • 401K plan with matching
  • Referral bonus program
  • Paid sick leave when required by law
  • Unpaid leave
© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service