Security Architect

Job Description

TUI Group is the world’s number one integrated tourism business. Security is a global team within TUI technology responsible for Security. We are a multi-disciplinary team of experts across Architecture, Engineering, DevOps and Agile Delivery providing services across the UK, Ireland, Sweden, Norway, Denmark, Finland, Germany, Austria, Belgium, The Netherlands and Aviation, Cruises and destinations worldwide.

At TUI we’re ambitious to become the leader in technology within the travel industry and to achieve this we are looking to build a capable, creative team who want to be a part of accomplishing that goal.

We never stop looking ahead, seeking new ways to delight our customers and grow our business. We recognise the power of digital and the massive contribution this brings to creating a truly unique and differentiated customer experience.

We are looking for a talented and dedicated leader to join the newly formed Security Architecture technology organisation which is responsible for the governance and delivery of security through the organisation.

The Security Architect will hold a critical role in overseeing the entire security architecture, with a special emphasis on cloud-based technologies and solutions. This position involves guiding key technical and design decisions, from the initial stages of ideation all the way through to their practical implementation. Working in close collaboration with Heads of Product, Heads of Technology, and other pivotal stakeholders, the Security Architect will play a vital part in ensuring the alignment of security strategies with the organisation’s overarching business outcomes. With a comprehensive understanding of both traditional and cloud-focused security challenges, the Security Architect will be a leading voice in high-level technical discussions, effectively bridging various domains to promote a secure, efficient, and cohesive well-architected environment.

ABOUT THE JOB

As a Security Architect, you will be entrusted with the critical mission of shaping the security architecture across our diverse application suite. This role demands a strategic mindset capable of navigating the intricacies of both legacy systems and cloud technologies, with a particular emphasis on AWS. You will be invaluable in developing secure architectural blueprints and documentation, thereby enabling our teams to enhance their productivity and secure their operations in alignment with business goals.

Work closely with architecture teams across the organisation to ensure that products are secure by design. This collaborative approach aims to align both security architecture, and security engineering strategies with overall business and technology objectives, promoting a unified security message.

Craft and maintain an evolving security architecture framework that not only addresses current technological complexities but is also flexible to future threats and business needs. This involves a deep understanding of both B2B and B2C application ecosystems and their unique security considerations.

Design detailed security architecture patterns for AWS, focusing on both preventative measures against potential threats and efficient deployment methodologies. These patterns should serve as a beacon for development teams, guiding them towards secure and rapid application development and deployment.

Engage with stakeholders across different business units, understanding their unique challenges and leading the development of integrated security solutions that support diverse operational goals without compromising on speed of delivery.

Elevate the security culture within the organization by advocating for security best practices, emerging technologies, and robust security protocols. Influence decision-making processes at all levels to prioritize security in the face of evolving cyber threats.

Ensure that all architectural solutions adhere to legal and regulatory standards, implementing a proactive approach to risk management. Regularly conduct threat modelling to pre-emptively identify and address vulnerabilities.

Develop and lead comprehensive training programs aimed at elevating the security competence of technical teams. Mentor team members on best practices in AWS security, fostering a shared responsibility model for security across the organization.

Continuously monitor the evolving security landscape and technology advancements to adapt and refine risk-based security strategies. Keep abreast of the latest developments in cloud security, especially within AWS, to continually refine and enhance the organization’s security architecture. Evaluate and recommend new tools and technologies that can provide competitive advantages in security operations. Work with architecture teams to implement updates and enhancements that address new security challenges and leverage innovative technologies.

Security is part of everyone’s job. At TUI, we practise secure behaviours first in everything we do.

ABOUT YOU

An experienced architect authentic servant leader with passion for technology and Securityarchitecture, including:

• A robust background in AWS, demonstrating a comprehensive understanding of its service offerings, security features, and best practices. Experience in deploying cloud security architectures and utilizing cloud-native resources to secure operations is crucial.
• The ability to align security initiatives with business objectives is key: understand the nuances of both B2B and B2C domains and devise security strategies that support business goals without compromising security.
• Be eager to stay abreast of new security threats and trends, particularly those affecting cloud technologies, and be capable of applying this knowledge to strengthen the organisation’s security posture.
• Have a data-driven approach to security, with the ability to conduct risk assessments, analyse incident data, and adhere to compliance mandates, as necessary.
• Proven track record in designing architecture blueprints and the optimisation of them to drive development and innovation. Experience with SABSA framework, C4 modelling, and enterprise tooling like LeanIX.
• Proficiency in translating business vision into viable technical strategies and in conveying such strategies back to business stakeholders.
• Experience in working in an agile environment and able to integrate architecture practises in an agile way of working.
• Be a great communicator and facilitator comfortable working across organisational and market boundaries and managing senior stakeholders. Able to disagree yet align.
• Open minded, inquisitive, life-long learner
• Comfortable with ambiguity, highly autonomous.
• Customer centric, passionate about delivering great digital products and services.

OUR OFFER

• Being a valuable team member of TUI, the No.1 global and socially aware travel company.
• Competitive salary and benefits.
• Smart working (Flexible hours) and possibility of working remotely up to 100% or Hybrid from one of our offices.
• Develop yourself as part of a friendly, richly, diverse and virtual international team.

If you want to know more about why TUI Group is the world’s leading tourism group, and our continuing work in the diversity & inclusion space, simply visit careers.tuigroup.com

#TUIjobs