APPRENTICE - Business Information Security Office (CyberSecurity Governance & Compliance)
Job Description
Job Title
APPRENTICE - Business Information Security Office (CyberSecurity Governance & Compliance)Amadeus is a global travel technology company powering better journeys. Our technology helps airports, airlines and ground handlers to collaborate more effectively for more efficient airport operations and a smoother end-to-end passenger experience.
Context
Since entering the Airport IT market we’ve pioneered a cloud computing approach that improves agility, limits cost and frees the industry to focus on its core business. Our portfolio includes integrated hardware and software to manage every passenger touchpoint from check-in to boarding, including advanced biometric capabilities. We also support airports with operational systems that optimize every aspect of how the terminal runs. The tight integration of our products means airports can become insight-driven by accessing a single, reliable, data foundation.
Within the AirOps Security team, you will join the Business Information Security Officer (BISO) function as an apprentice, focusing on security governance, risk management, and regulatory compliance.
You will contribute to supporting the Business Unit in implementing and monitoring security and data protection requirements, in alignment with Group security strategy and regulatory obligations.
This apprenticeship provides a transversal and strategic view of cybersecurity, focused on governance, compliance, and business interactions rather than hands-on technical operations.
What you will do
Assist in the preparation and follow-up of compliance and certification programs, including: ISO 27001, SOC1/SOC2, ENS, PCI-DSS, GDPR / Data Privacy
Support the teams in closing gaps to identified security frameworks and corporate policies, standards, procedures
Contribute to audit activities (evidence collection, documentation preparation)
Contribute to security risk management processes (risk identification, tracking, reporting)
Collaborate with cross-functional stakeholders (product teams, legal, compliance, corporate security)
Gradually contribute to broader BISO topics
Why this role is attractive for you
Direct exposure to major industry certifications (ISO27001, SOC1/2, PCI-DSS) are highly valuable early in a career
Hands-on experience with real compliance and audit processes, at the core of business and regulatory expectations
End-to-end understanding of enterprise cybersecurity, beyond purely technical aspects
Opportunity to interact with multiple stakeholders (technical, business, legal, international customers)
Learn how security enables business in critical industries (airlines, airports, governments)
Strong foundation for career paths in security governance, risk management, consulting, or BISO/CISO roles
Your profile
Student in Engineering School or Master’s degree in Cybersecurity / IT
Strong interest in compliance, audit, risk management, and security governance
Understanding of information security concepts
Strong analytical and communication skills
Interested to work in a cross-functional and international environment
Fluent or professional level in English
Diversity & Inclusion
Amadeus aspires to be a leader in Diversity and Inclusion in the tech industry, enabling every employee to reach their full potential by fostering a culture of belonging and fair treatment, attracting the best talent from all backgrounds, and as a role model for an inclusive employee experience.
Amadeus is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to gender, race, ethnicity, sexual orientation, age, beliefs, disability or any other characteristics protected by law.
Amadeus endeavors to make https://jobs.amadeus.com/ accessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process for Amadeus France, please contact us at [email protected]. This contact information is for accommodation requests only and cannot be used to inquire about the status of applications.