Principal Architect - Infrastructure Cybersecurity (Remote)

Achieving our goals starts with supporting yours. Grow your career, access top-tier health and wellness benefits, build lasting connections with your team and our customers, and travel the world using our extensive route network.Come join us to create what's next. Let's define tomorrow, together.DescriptionUnited's Digital Technology team is comprised of many talented individuals all working together with cutting-edge technology to build the best airline in the history of aviation. Our team designs, develops and maintains massively scaling technology solutions brought to life with innovative architectures, data analytics, and digital solutions.Job overview and responsibilitiesThe Principal Architect – Infrastructure Cybersecurity supports efforts to mature infrastructure security capabilities for United Airlines. You will be part of a cross-disciplinary Cyber team responsible for full stack security architecture. In this role the Architect will work on the creation and maintenance of security relevant documentation and partner with product, platform, engineering, and operations teams to ensure the adoption of security best practices across the entire application or system lifecycle. The architect with help continuously improve our cyber controls and associated playbooks, workflows, processes, and procedures.Conduct threat modeling, end-to-end security evaluation, design and development of infrastructure and cloud security policies, standards, and proceduresDemonstrate expert technology competence in two or more domains such as security, resiliency, infrastructure, platform, product, endpoint, application, identity management, and data security, and zero trustActively partner with stakeholders to understand business requirements and develop supporting security and resiliency principles to ensure adoption of industry and enterprise best practicesDevelop and promote security and resiliency architecture strategies, frameworks and patterns while partnering closely with other cybersecurity teams and collaborating with partner organizationsIdentify cybersecurity issues, strengths and weaknesses across various cyber domains and partner organizations that introduce risk and provide solutionsAssists in defining and implementing Security Standards/frameworksTrain and coach development and engineering teams to integrate CI/CD pipeline tools, test plans and vulnerabilities assessment tools for CloudParticipate in and drive security advisory boards and committees, providing security architecture review and process ownership for new and existing solutionsServe as a champion for secure infrastructure-as-code for end-to-end configuration and overall success of the IaaS, PaaS, and SaaS environmentsPlan, design, build, and test approaches and solutions that are tied to business outcomes and our cybersecurity strategy and visionEnsures program(s) is meeting intended purpose and metricsQualificationsWhat's needed to succeed (Minimum Qualifications):Bachelor's degree required5+ years of technical experience, with direct experience related to security and architectureExpert level knowledge of network security principles and technologies including network architecture, intrusion detection/prevention and network segmentationExpert level knowledge of network infrastructure components and technologies like routers, switches, firewalls, proxy servers, reverse proxies, load balancers, IDS/IPS, VPN, SDWAN, network taps, application centric networking, overlay networking conceptsExpert knowledge of information security techniques and tools like content filtering, application firewalls, vulnerability scanners, EDR, forensics software, incident response, SIEM, SOAR, NAC, etcExpert knowledge in secure configuration practices for operating systems and infrastructure componentsExpert knowledge of OS or compute infrastructure components and technologies like Unix/Linux, Windows, Docker, Kubernetes, VMWare, EC2, ECS, EKS, LambdaExpert knowledge of endpoint security technologies such as endpoint detection and response and mobile device managementExpert knowledge of Data Loss Prevention (DLP) concepts and servicesExpert knowledge of identity and access management services, techniques conceptsExpert knowledge of secure wireless protocols, techniques, and productsExpert knowledge of network protocols like TCP/IP, UDP, IPSEC, SSL/TLS, HTTP, etcExpert knowledge of common enterprise services like DNS, DHCP, LDAP, SMB, CIFS, NTP, etcExpert knowledge of security focused processes like architecture reviews, access reviews, vulnerability management, and auditProficient knowledge of cloud infrastructure services, concepts, and best practicesProficient knowledge of secure connectivity methods via private or encrypted meansProficient knowledge of cloud interconnectivity methodsProficient knowledge of zero trust network architectures and principlesProficiency with security assessments and remediation guidanceProficient knowledge of compliance frameworks and processes (e.g., NIST 800-53, CIS Controls)Proficient knowledge of security policy and standards developmentAbility to manage business and external partnersAbility to work independently and self-motivateExcellent problem solving, critical thinking, interpersonal, collaboration, written and verbal communication skillsMust be legally authorized to work in the United States for any employer without sponsorshipSuccessful completion of interview required to meet job qualificationReliable, punctual attendance is an essential function of the positionWhat will help you propel from the pack (Preferred Qualifications):Master's degreeCCNP, CCDP, or alternate vendor equivalentAWS Solution Architect Associate, Networking, and Security SpecializationsCertifications like CISSP, ISSAP, ISSEP, ISSMP, CISM, CRISC, CEH, GIAC Family8+ years of technical experience, 5 years directly related to security and architectureThe base pay range for this role is $140,600.00 to $183,108.00.The base salary range/hourly rate listed is dependent on job-related, factors such as experience, education, and skills. This position is also eligible for bonus and/or long-term incentive compensation awards.You may be eligible for the following competitive benefits: medical, dental, vision, life, accident & disability, parental leave, employee assistance program, commuter, paid holidays, paid time off, 401(k) and flight privileges.United Airlines is an Equal Opportunity Employer. We recruit, employ, train, compensate, and promote without regard to race, color, religion, national origin, gender identity, sexual orientation, disability, age, veteran status, or any other protected category under applicable law. We provide reasonable accommodations for applicants and employees with disabilities. To request an accommodation, contact JobAccommodations@united.com.J-18808-Ljbffr