Senior IT Security Specialist

Overview:

At SITA, we keep airports moving, airlines flying smoothly, and borders open. Our technology and communication innovations power the success of the global air travel industry.

You'll find us in 95% of international airports, working closely with over 2,500 transportation and government clients. Each partnership brings unique challenges, and we thrive on delivering fresh solutions and cutting-edge tech to keep operations running like clockwork. We don't just move the world forward-we're proud to be recognized as a Great Place to Work by 79% of our employees and certified in most of our growing locations. Here, we feel empowered, supported, and inspired to grow.

Are you ready to love your job?

The adventure begins right here, with you, at SITA.

The Senior IT Security Specialist will strengthen our infrastructure and cloud environments, embed security controls into engineering workflows, and improve operational resilience. This role combines technical depth with a builder mindset—designing secure configurations, automating validation, leveraging AI-assisted security capabilities and supporting incident response.

We value diverse perspectives and encourage applications from all qualified candidates, regardless of gender, background, age, disability, or neurodiversity.

• Security Hardening and Compliance: Implement and maintain security baselines for Windows and Linux systems (e.g., GPO, SELinux). Integrate security validation into CI/CD pipelines and Infrastructure‑as‑Code (IaC) workflows using tools such as Terraform and Ansible.
• Cloud Security: Design and enforce governance policies in Azure. Remediate misconfigurations, vulnerability. Iprove cloud security posture through automation and policy‑as‑code. Leverage AI-assisted tools to improve vulnerability prioritization, alert triage, and security automation.
• Platform and Network Security: Secure containerized environments (e.g., Kubernetes) with proper RBAC, network policies, and configuration controls. Firewall rules optimization
• Vulnerability and Compliance Management: Operate and maintain vulnerability scanning tools; ensure coverage and timely remediation.Collaborate with engineering teams to automate vulnerability handling and reduce manual effort.
• Incident Response: Use AI-driven analytics and enrichment tools to accelerate incident detection, investigation, and root-cause analysis. Participate in initial triage and forensic analysis in identifying security related incident. Work with SOC team (SIEM/EDR) and follow escalation procedures to contain and resolve threats.
• Security Architecture and Solution validation: Analyze new security requirements and emerging technologies. Design and deploy proof‑of‑concept environments for security tools or architectures. Document findings, operational procedures, and provide recommendations for production rollout.
• Compliance supports: Understand the compliance structure, such as ISMS, SOC-2 requirements and provide the required support.
• Lead security hardening efforts across servers and network devices.
• Support compliance initiatives (such as ISO 27001, GDPR, or NIST) by implementing and documenting security processes.
• Review and enhance identity and access management (IAM), including MFA, privileged account management, and conditional access.

Qualifications:

• 3–5+ years of relevant experience, or equivalent practical expertise.
• Practical exposure to security hardening, compliance support, and automation —not just theory.
• Evidence of handling critical situations (e.g., security incidents, audit findings) and applying lessons learned to improve processes.
• Strong knowledge of Windows and Linux security internals and hardening techniques.
• Hands‑on experience with Azure security architecture, policy enforcement, and governance.
• Practical skills in Kubernetes security and containerized workloads.
• Familiarity with CI/CD security integration and IaC tools (Terraform, Ansible).
• Experience operating vulnerability scanning and compliance tools.
• Ability to perform forensic analysis and support incident response workflows.
• Ability to translate security requirements into actionable technical solutions.
• Strong communication skills for cross‑team collaboration.
• Certifications such as AZ‑500 (Azure Security), CKS (Kubernetes Security Specialist), CISSP, or equivalent.
• Experience with policy‑as‑code frameworks (e.g., OPA/Conftest).
• Exposure to AI-enabled security tools (e.g. UEBA, AI-driven SIEM, SOAR, vulnerability prioritization, or automated investigation).
• Experience with Operation mandates in complex environment
• Background in automating security controls and evidence collection for compliance audits.

We're all about diversity. We operate in 200 countries and speak 60 different languages and cultures. We're really proud of our inclusive environment. Our offices are comfortable and fun places to work, and we make sure you get to work from home too. Find out what it's like to join our team and take a step closer to your best life ever.

Flex Week: Work from home up to 2 days/week (depending on your team's needs)

• Flex Day: Make your workday suit your life and plans.

Flex-Location: Take up to 30 days a year to work from any location in the world.

Employee Wellbeing: We have got you covered with our Employee Assistance Program (EAP), for you and your dependents 24/7, 365 days/year. We also offer Champion Health - a personalized platform that supports a range of wellbeing needs.

Professional Development: Level up your skills with our training platforms, including LinkedIn Learning

Competitive Benefits: Competitive benefits that make sense with both your local market and employment status.

SITA is an Equal Opportunity Employer. We value a diverse workforce. In support of our Employment Equity Program, we encourage women, aboriginal people, members of visible minorities, and/or persons with disabilities to apply and self-identify in the application process.