United Airlines Senior Manager Security Engineer in Chicago, Illinois

Senior Manager Security Engineer

With great people, the world’s most comprehensive global route network, the best class of aircraft among U.S. network carriers and the industry-leading loyalty program, United is well positioned to deliver meaningful profitability and sustainable long-term value for our customers, the communities we serve, our shareholders and co-workers around the world.

Department overview

United is looking for people to join our Global IT group. With an increase of 400% in IT spend since 2012, IT is the largest investment at United after aircrafts. As we continue our transformation we want you to come join us as we take off! Our IT Risk and Compliance Department within IT is the backbone and foundation for the projects that will help transform United for its customers and employees. We are looking for you to assist a strong team to deliver globally under the Senior Leadership of Linda Jojo who won Chicago Chief Information Officer (CIO) of the Year honors in 2017.

Job overview and responsibilities

The IT Senior Security Engineer will provide technical expertise covering a wide range of IT security solutions. The position will provide a great opportunities to grow technically in a fast-paced and exciting environment.

Responsibilities:

  • Lead security operations necessary to maintain the confidentiality, availability, and integrity of enterprise data and information systems.

  • Perform leading to all necessary functions associated with the implementation and integration of security tools and platforms into the enterprise environment.

  • Coordinate with systems and network engineers to ensure servers and network devices conform to security standards, and that security devices and controls are working as designed.

  • Lead in defining the security strategy and integrating regulatory compliance requirements (e.g., PCI, GLBA) into the organizational security roadmap.

  • Lead multiple large-scale security projects. These projects will be developed concurrently and possess numerous interdependencies. Act as the security representative on cross-team mission critical IT projects.

  • Design, deploy, test, document and manage complex enterprise security solutions, systems & infrastructure.

  • Provide technical expertise and analysis for all areas of security technology, including network security, platform security, authentication/authorization systems, identity & access management systems, application security and security infrastructure.

  • Participate in the development and delivery of IT security standards, best practices, architectures and systems.

  • Identify and remediate security risks, threats and vulnerabilities across networks, systems and applications.

  • Research, evaluate, design, test, recommend, and plan implementation of new and/or improved information security devices, systems & infrastructure.

  • Proactively protect the integrity, confidentiality, and availability of information stored & processed by and/or in the custody of United Airlines.

  • Work with appropriate technology groups to evaluate, select, install, and configure hardware & software systems to comply with established enterprise security standards and policies.

  • Develop technical documentation to support the design, evaluation, selection, installation, and maintenance of security systems.

  • Keep abreast of emerging security threats, industry trends, technologies, products and services.

  • Produce and maintain detailed IT security engineering specifications, designs and documentation.

  • Develop and document technical security standards to comply with policies and best practices.

  • Conduct technical evaluations of IT systems for compliance with security policies, standards and best practices.

  • Implements security remediation for non-compliant areas of IT.

  • Support other department initiatives and deliverables as needed

Required:

  • Bachelors in Computer Science, MIS or related field

  • 3+ year of expertise in leading security teams with large demand

  • 5+ years of demonstrated security experience in a combination of technical engineering, architect, leads, or enterprise engineering roles

  • 2 + years' of demonstrated experience in cloud security (experience with AWS or Azure IaaS cloud desired)

  • 3 + years' of demonstrated experience in network security

  • Proven experience with deploying and managing various security technologies, like:

  • IDS/IPS

  • NGFW

  • Packet Aggregation Technology (Network Packet Broker)

  • SSL decrypt technology

  • Wireless Security

  • Web application firewalls and proxies

  • Endpoint security

  • Hands on experience with Linux/UNIX and Windows operating systems

  • Experience with regulatory requirements such as PCI and SOX

  • Knowledge of GDPR

  • Experience working with Enterprise Architecture standards and processes

  • Proven experience with creation of technical diagrams and documentation

  • Ability to establish priorities, work independently and proceed with objectives

  • Strong communication skills to work with both collaborative cross-functional team of peers and departments within the company

  • Strong motivation and desire to learnDesired experience with following technologies:

  • SIEM

  • Email Security

  • DLP

  • Mobile Security

  • Encryption

  • Privilege Access Management Preferred

  • CISSP certified

  • Experience in travel industry, especially airline related

  • Coding/scripting skills is a plus

  • Experience with deploying and supporting CASB solution

Equal Opportunity Employer – Minorities/Women/Veterans/Disabled/LGBT

Division: 47 Technology/IT

Function: Information Technology

Equal Opportunity Employer – Minorities/Women/Veterans/Disabled