At SITA, we keep airports moving, airlines flying smoothly, and borders open. Our technology and communication innovations power the success of the global air travel industry.

Youll find us in 95 of international airports, working closely with over 2,500 transportation and government clients. Each partnership brings unique challenges, and we thrive on delivering fresh solutions and cutting-edge tech to keep operations running like clockwork. We dont just move the world forward-were proud to be recognized as a Great Place to Work® by 79 of our employees and certified in most of our growing locations. Here, we feel empowered, supported, and inspired to grow.

Are you ready to love your job?

The adventure begins right here, with you, at SITA.

The purpose of this role is to perform Cyber Security, IT and Privacy audits of SITA corporate procedures processes and sites throughout the world and to prepare factual audit reports and communications informing management and stakeholders of risk areas and issues.

Perform independent cyber security, IT and Privacy audits in accordance with the audit schedule approved by the Audit and Risk Management Committee and hence prepare for independent cyber security, IT and Privacy audits and field work with the purpose of evaluating (but not limited to):

• Cyber Security, IT and Privacy Policies, Standards and Procedures
• Cyber, IT and Privacy governance and operating model
• Cyber Security, IT and Privacy risk management
• Identity & access management (IAM)
• Network and infrastructure security
• Cloud security
• Application security and SDLC
• Data protection and privacy controls
• Incident response and cyber resilience

In order to perform the above, the candidate must demonstrate ability to:

• Perform end‑to‑end audit activities: planning, fieldwork, testing, documentation, and reporting
• Apply data‑driven and technical audit techniques (configuration reviews, log analysis, vulnerability assessment review, etc.)
• Assess the design, implementation and and operating effectiveness of cybersecurity, IT anmd Privacy controls
• Evaluate alignment with recognized frameworks and standards (e.g. NIST CSF, ISO 27001, CIS, COBIT, NIS2, GDPR)
• Identify control gaps, weaknesses, and root causes
• Assess management’s remediation plans for adequacy, sustainability, and timeliness
• Assess compliance with Internal policies, Regulatory and contractual cyber requirements
• Provide assurance over third‑party and supply‑chain cyber, IT and Privacy risk management
• Present audit results to senior management and EMT
• Track and validate remediation actions, including follow‑up testing where required

• 3 years of experience in external/internal cyber, IT, and privacy auditing
• Experience performing end-to-end audits independently
• Strong understanding of cybersecurity and IT controls
• Experience with technical audit techniques (not only policy-level reviews)
• Familiarity with frameworks such as ISO 27001, NIST, CIS, COBIT, GDPR, NIS2
• Background in an audit environment (e.g. audit firm or internal audit team)
• Ability to communicate effectively with senior stakeholders, including leadership level

Nice to have:

• ISO 27001 Lead Auditor or similar certification (e.g. CISM)
• Exposure to privacy topics alongside cybersecurity

Were all about diversity. We operate in 200 countries and speak 60 different languages and cultures. Were really proud of our inclusive environment. Our offices are comfortable and fun places to work, and we make sure you get to work from home too. Find out what its like to join our team and take a step closer to your best life ever.

🏡 Flex Week: Work from home up to 2 days/week (depending on your teams needs)

⏰ Flex Day: Make your workday suit your life and plans.

🌎 Flex-Location: Take up to 30 days a year to work from any location in the world.

🌿 Employee Wellbeing: We have got you covered with our Employee Assistance Program (EAP), for you and your dependents 24/7, 365 days/year. We also offer Champion Health - a personalized platform that supports a range of wellbeing needs.

🚀 Professional Development: At SITA, we believe growth fuels innovation. Our learning ecosystem offers access to world-class platforms and programs designed to help you thrive. From LinkedIn Learning, Microsofts Enterprise Skills Initiative, and Airport Council International -available to all employees-to specialized solutions like Pluralsight for technology upskilling, Harvard Business Publishing for people leadership, Stanford for strategic development and many others, we align learning opportunities with your Development Plan and our business priorities. Your development journey is supported every step of the way.

🙌 Competitive Benefits: Competitive benefits that make sense with both your local spanet and employment status.

SITA is an Equal Opportunity Employer. We value a diverse workforce. In support of our Employment Equity Program, we encourage women, aboriginal people, members of visible minorities, and/or persons with disabilities to apply and self-identify in the application process.