Share this Job

Job Title:  Principal Information Security

Location: 

Southlake, TX, US

Remote Options (if applicable):  Flexible remote options

Req ID: 59404

Job Family: Information Technology/Software Development

 

Sabre Corporation is a leading technology provider to the global travel and tourism industry. Headquartered in Southlake, Texas, USA, Sabre operates offices in approximately 60 countries around the world. At Sabre, we make travel happen. Positioned at the center of the business of travel, our platform connects people with experiences that matter in their lives. Today, Sabre is creating a new marketplace for personalized travel. It is our people who develop and deliver powerful solutions that meet the current and future needs or our airline, hotel and travel agency customers. Join our journey! 

Join our Journey

Looking for a security professional to join our Cyber Threat Management team to build a Threat Modeling program. The ideal candidate will have broad Cyber Security, Risk Assessment and Program management experience with ability to collaborate and integrate with team members, business partners and technical teams in a global environment to formalize and mature an enterprise Threat Modeling Program. 
 
The Threat Modeling lead will be required to create and manage the Threat Modeling framework and methodology, establish processes, and formalize artifacts to be used enterprise wide.  This person will define and support activities needed for continuous integration with other Cyber Security teams including Security Design and Architecture, Vulnerability Management, Risk Management, Threat Detection, Threat Intelligence, Threat Hunting and Compliance. As the Threat Modeling lead, this individual will establish a foundation to enable risk-based business decisions. 

 

Role and Responsibilities

  • Create an enterprise Threat Modeling Program 
  • Build out documentation, processes, reporting and reviews for the enterprise for Threat Modeling artifacts
  • Collaborate with engineers, security architects and other Cyber Threat team members to evaluate, measure and quantify threats
  • Work with Development teams to assess threats in combination with software, network, platform and other associated risks
  • Maintain and keep Threat Modeling processes and deliverables current
  • Establish relationships with business stakeholders, Product and System owners, Data Privacy, Legal, Corporate Communications and Senior Leadership to maintain the Risk profile
  • Provide support and assist in the training/mentoring security staff to increase understanding of complex security threat methodologies and issues 

Job Requirements

Experience:

  • Minimum 5+ years experience in Information Technology
  • Minimum 3+ years experience in Threat Analysis, Threat Modeling and Information Security
  • Minimum 3+ years of experience with network security, endpoint security, or security threat vectors 
  • Minimum 2 + years of Risk Assessment, Risk Management and/or Audit experience

 

Required Skills:

  • Excellent Interpersonal Skills
  • Ability to execute in fast paced environment; self-motivated, capable of balancing priorities, managing task completion, delegating and coordinating within the team and across matrixed organizations 
  • Strong collaborative skills, ability to perform as a team player and engage with remote parties to meet objectives
  • Discernment related to business drivers and risk mitigation to effectuate informed recommendations 
  • Strong understanding of attacker tools, techniques, and methodologies. 
  • Ability to negotiate, facilitate commitment to, and sign-off on, appropriate levels of residual risk and address mitigation options
  • Familiar with one or more Threat Model frameworks
  • Strong organization skills, analytical problem solving, and strategic thinking skills with attention to detail

 

Required Education:
Bachelor’s degree or Computer Science degree or equivalent. Will consider experience in lieu of degree.
 
Preferred Certification:
Certification in one or more of the following: Certified Information Systems Security Professional (CISSP), GIAC Certified Incident Handler (GCIH), GIAC Reverse Engineering Malware (GREM), GIAC Certified Forensic Analyst (GCFA), GIAC Network Forensics Analyst (GNFA), Offensive Security (OSCP/OSCE/etc), or other relevant certifications

Benefits

•    Very competitive compensation
•    Generous Paid Time Off (5 weeks PTO your first year!)
•    We offer a comprehensive medical, dental and Wellness Program
•    An infrastructure that allows flexible working arrangements
•    Formal and informal reward, recognition, and acknowledgement programs
•    Lots of fun and engaging employee development events

 

Reasonable Accommodation

Sabre is committed to working with and providing reasonable accommodation to applicants with disabilities. Applicants applying for a Sabre position with a disability who require a reasonable accommodation for any part of the application or hiring process may contact Sabre's Compliance Office at compliance.office@sabre.com.

Affirmative Action

Sabre is an equal employment opportunity/affirmative action employer and is committed to providing equal employment opportunities to minorities, females, veterans, and disabled individuals. EEO IS THE LAW

 

Stay connected with Sabre Careers

Facebook Twitter LinkedIn

 

#LI-EM1

#LI-Remote

 


Nearest Major Market: Dallas
Nearest Secondary Market: Fort Worth

Job Segment: Information Security, Computer Science, Information Systems, Program Manager, Technology, Management