WHO ARE WEB TRAVEL GROUP?

The Web Travel Group, an ASX 200 listed company (ASX: WEB), is a global B2B organisation servicing the travel industry, connecting hotels and other travel sellers to a diverse network of travel buyers all over the world through our trade only digital travel marketplace brand – WebBeds.
In September 2024, we changed our name from Webjet Limited to the Web Travel Group as part of a Demerger. The Webjet Group (Webjet B2C - comprising of Webjet OTA, GoSee, Trip Ninja) demerged from the Web Travel Group, creating two independent and simplified companies, improving our ability to pursue independent strategic priorities and growth agendas relevant to our businesses.
Find out more about the Web Travel Group at: www.webtravelgroup.com

THE SKILLS WE WOULD LOVE TO SEE IN YOUR SUITCASE!

• Demonstrated commercial experience within a Cybersecurity role.
• Prior experience with Web Development and Software Engineering with C#, GoLang, Python or other languages.
• Experience with hardening and security of Linux operating system.
• Hands-on technical security/penetration testing for Web applications.
• Experience with security related architecture & code reviews and security assurance activities.
• Knowledge of OWASP top 10 and relevant controls.
• Experience with cloud technologies in Azure or AWS.

• Understanding our internal threat landscape and work with relevant teams to mitigate related risks.
• Supporting and collaborating with development and platform engineering teams in building security into DevOps processes.
• Championing our vulnerability management program to understand key weaknesses to the business and help tune these controls.
• Collaborating with development teams to investigate security alerts raised and track through to remediation.
• Championing our security review process by performing risk assessments for new technical projects and enhancements to understand key risks and appropriate mitigations to the business.
• Working closely with our key stakeholders to ensure they understand their environment and business processes to identify key security risks and provide advice on what appropriate controls could be implemented to reduce our exposure to risk.
• Supporting the audit function within the team to ensure we are operating to internal and relevant industry standards.