Senior Engineer - Cybersecurity Operations & Engineering (Remote)

We’re on a path to becoming the best airline in aviation history. Join our Cybersecurity and Digital Risk (CDR) team to help lead the industry in cyber safety, security and resilience. United's CDR team plays a critical role in protecting our operations by enabling secure and resilient systems, managing threats and vulnerabilities, and ensuring swift response and recovery. Our mission is to seamlessly embed cybersecurity and digital risk management into every aspect of our business. We help drive progress and growth through trusted digital solutions, safeguarding assets and empowering our team, all while promoting a cyber-safe and secure environment that supports resilient airline operations.
 

United offers a competitive benefits package aimed at keeping you happy, healthy, and well-traveled. From employee-run "Business Resource Group" communities to world-class benefits like parental leave, 401(k), and privileges like space-available travel, United is truly a one-of-a-kind place to work. Are you ready to travel the world and help us keep our airline cyber safe? Apply today!
 

Job overview and responsibilities

The Senior Engineer - Cybersecurity Operations and Engineering provides technical expertise covering a wide range of IT security solutions. As part of the security operations team, the Senior Engineer - Cybersecurity Operations and Engineering works to create and maintain a secure operating environment for users and business partners by securing network boundaries, ensuring infrastructure is hardened against attacks, and providing infrastructure security solutions to protect highly sensitive data.

•                     Design, build, and operate infrastructure security solutions and platforms 

•                     Participate in design, build, and maintenance of network infrastructure emphasizing security controls

•                     Administrate and expand the CrowdStrike Falcon platform. Architect, engineer, and deploy expanded cyber security functionality to the United Airlines infrastructure

•                     Design, build, and operate CrowdStrike solutions within cloud and cloud-native application spaces adding visibility of threats, risk identification, and vulnerability remediation through detection, response, and secured configuration enablement

•                     Design, build, and operate CrowdStrike solutions for custom identity threat detection and response via Zero-Trust methodology and technology enablement throughout the identity environment (on-prem, federated, and cloud)

•                     Develop schemes and technology to secure and monitor new technologies as they are onboarded

•                     Apply log analysis skills and experience in relation to identifying and investigating security incidents in the identity, cloud, and cloud native applications environments

•                     Create resources, documentation, and training materials to assist security operations, identity, and cloud engineering teams to secure their environments effectively

•                     Participation in client projects as a security Domain Expert within the cloud security and identity threat detection and response spaces

What’s needed to succeed (Minimum Qualifications):

•                     Bachelor’s degree in Computer Science or Technology required

•                     4+ years of experience, with heavy emphasis on the CrowdStrike Falcon platform working in the deployment of expanded security related functionality to large enterprise environments

•                     Strong experience working with AWS and/or Azure cloud security, including managing security vulnerabilities, identifying attack-paths, and behavioral threat detections to secure hosts and containers

•                     Experienced working with identity threat detection and response systems (within Amazon AWS, Windows Active Directory, Azure Active Directory, Federated and MFA environments), familiar with the application of Zero-Trust methodologies in those spaces

•                     Background working with Incident Response and/or Security Operations Center (SOC) teams triaging for IT enterprise (email, endpoint security, firewalls, network security, IPS/IDS, etc.) and cloud environments

•                     Working knowledge (understanding) of Identity technologies, methods, and domains with experience in designing and deploying zero-trust identity-specific threat detection and response

•                     Experience with endpoint incident response technologies

•                     Experience working with cloud environment management, administration, and architecture

•                     Demonstrated a high sense of urgency with strong pragmatic problem-solving skills

•                     Must be legally authorized to work in the United States for any employer without sponsorship

•                     Successful completion of interview required to meet job qualification

•                     Reliable, punctual attendance is an essential function of the position

What will help you propel from the pack (Preferred Qualifications):

•                     Master's degree

•                     Industry certifications such as the CISSP, CISM, CISA, GCIH, CFCE, GFCA, and/or GCFE

•                     7+ years of enterprise-level systems engineering

Job post expiration\: 11/28/2015