Senior Manager - Product Cybersecurity

Achieving our goals starts with supporting yours. Grow your career, access top-tier health and wellness benefits, build lasting connections with your team and our customers, and travel the world using our extensive route network.

Come join us to create what's next. Let's define tomorrow, together.

Description

United's Digital Technology team is comprised of many talented individuals all working together with cutting-edge technology to build the best airline in the history of aviation. Our team designs, develops and maintains massively scaling technology solutions brought to life with innovative architectures, data analytics, and digital solutions.

Job overview and responsibilities

The Senior Manager - Product Cybersecurity is a technical leader responsible for managing a team of highly innovative cybersecurity engineers responsible for developing and maintaining end-to-end security architecture of United's product(s) / application(s) / service(s). This person will create and implement a vision for security across all products within the United portfolio.

Responsible for recruiting and talent development of team, including personnel management

Define, prioritize, allocate resources, track, and provide status reporting of work assignments, projects, and programs

Monitors changes in legislation and compliance standards that affect assigned areas of responsibility and proactively acts to update standards, best practices and architectures based on this information

Coordinates remediation of non-compliant items to meet applicable compliance standards and best practices

Assist with annual budgeting and monthly forecasting

Qualifications

What's needed to succeed (Minimum Qualifications) :

Bachelor's degree

At least 9 years of related experience

Proficiency with OWASP Top 10

Proficient knowledge of threat modeling

Proficient knowledge of risk management processes

Proficient knowledge of DevSecOps (e.g., CI / CD, IaC,PaC,CaC)

Proficiency with application testing (e.g., SAST, DAST, MAST, RAST, IAST, Pen Test tooling)

Proficiency with scripting (e.g., PowerShell, Python, Perl, Bash)

Proficiency with programming languages and modern programming language structure (e.g., Object Oriented Programming, web framework)

Proficient with DevSecOps technology stacks (e.g., AWS, Harness, TeamCity, GitHub, Artifactory, CHEF, CloudWatch)

Proficiency with SDLC process

Proficiency with web and app security stack (e.g., API security)

Proficient knowledge of cloud technologies and security

Proficiency with vulnerability management processes and providing remediation guidance

Proficient understanding of compliance frameworks (e.g., NIST 800-53) and processes.

Experience with technical documentation / SOP creation

Proficiency in cryptography

Proficient understanding of IAM (i.e., authentication and authorization)

Proficient understanding of networks and network security

Ability to manage business and external partners

Excellent problem solving, critical thinking, interpersonal, collaboration, written and verbal communication skills

Must be legally authorized to work in the United States for any employer without sponsorship

Successful completion of interview required to meet job qualification

Reliable, punctual attendance is an essential function of the position

What will help you propel from the pack (Preferred Qualifications) :

Master's degree

One or more of the following :

Certified Ethical Hacker (CEH)

GIAC Security Essentials (GSEC)

Certified Information Security Manager (CISM)

Comp TIA Security + Certified Information Systems Security Professional (CISSP)

Certified Information Systems Auditor (CISA)

Systems Security Certified Practitioner (SSCP)

CompTIA Advanced Security Practitioner (CASP+)

Offensive Security Certified Professional (OSCP)

AWS Solution Architect Pro., Networking, and Security Specializations

12+ years of relative experience

Working knowledge and / or hands on experience with as many as possible of the following areas :

Operating System & platform security

Networking Security and an understanding of network and web related protocols

Voice over IP and unified communication security

Strong subject matter expertise in the fields of IT security and risk management

Strong knowledge of IT infrastructure security best practices, procedures, and standards

Experience with cloud native products and in-depth understanding microservice topologies and implementations

Expertise in application development and dev-ops security technologies and integration

Demonstrated ability to think strategically about business, product, and technical challenges

Experience within the transformation of traditional data center security measures into industry adopted cloud technologies

Proven ability to work with compliance frameworks and requirements

Ability to work in a fast-paced and Agile development environment

Ability to perform manual security code reviews

Ability to interpret dynamic / static analysis tools, and penetration test results

The base pay range for this role is $137,275.00 to $178,670.00.

The base salary range / hourly rate listed is dependent on job-related, factors such as experience, education, and skills. This position is also eligible for bonus and / or long-term incentive compensation awards.

You may be eligible for the following competitive benefits : medical, dental, vision, life, accident & disability, parental leave, employee assistance program, commuter, paid holidays, paid time off, 401(k) and flight privileges.

United Airlines is an equal opportunity employer. United Airlines recruits, employs, trains, compensates and promotes regardless of race, religion, color, national origin, gender identity, sexual orientation, physical ability, age, veteran status and other protected status as required by applicable law. Equal Opportunity Employer - Minorities / Women / Veterans / Disabled / LGBT.

We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform crucial job functions. Please contact JobAccommodations@united.com to request accommodation.