Engineer/Sr Engineer, IT Aviation Cybersecurity

Intro

Are you ready to explore a world of possibilities, both at work and during your time off? Join our American Airlines family, and you'll travel the world, grow your expertise and become the best version of you. As you embark on a new journey, you'll tackle challenges with flexibility and grace, learning new skills and advancing your career while having the time of your life. Feel free to enrich both your personal and work life and hop on board!

Why you'll love this job

• This job is a member of the Information Technology team within the Information Technology Division.
• This role provides support to the Cybersecurity (CS) Aviation Cybersecurity team and is responsible for building and maintaining key relationships throughout the organization and with cybersecurity aviation industry partners. This includes key internal partners such as Avionics Engineering, Cabin Experience, Maintenance Technology, Government Affairs, Corporate Security, and Corporate Safety. In addition, this person will be coordinating our involvement with external industry partners to ensure we are up to date on the latest developments in aviation cybersecurity. This role provides strong aviation cybersecurity experience to assist with risk analysis and recommending mitigation possibilities, and promotes cybersecurity practices as part of our digital aircraft .

What you'll do

• Leverages cybersecurity expertise to drive the technical research, planning, and architectural design of systems related to digital aircraft to ensure confidentiality, integrity, and high-availability of corporate, vendor, and customer data
• Defines, develops, and delivers technical solutions, security requirements and standards that incorporate both industry and company technology standards spanning multiple security domains
• Provides internal security consultations for teams supporting digital aircraft, ground, and communication systems
• Supports standards, regulations, and compliance activities from cybersecurity perspective for FAA & other governing bodies
• Interfaces with industry counterparts like Aviation-ISAC, IATA Cybersecurity Task Force, and oneworld partners
• Assists with cyber-incidents related to AA's aviation technologies
• Defines, develops, and delivers technical solutions, security requirements and standards that incorporate both industry and company technology standards spanning multiple security domains
• Delivers and maintains key artifacts and work products in support of the system review, software development, and quality assurance of airline operations
• Ensures digital aircraft systems and endpoints are scanned using Vulnerability Management tools and practices
• Coordinates with business, IT teams, and IS Risk to remediate compliance findings in a timely manner while addressing risk reduction objectives
• Demonstrates continuous improvement mindset
• Maintains an effective approach to problem solving, multi-tasking, coordinating, and scheduling in accordance with stated goals to ensure visibility and predictability
• Works extended hours occasionally, based on the needs of the project and the operation

All you'll need for success

Minimum Qualifications- Education & Prior Job Experience

• Bachelor's degree in Information Technology, IT Security, Network Systems Technology or related technical discipline, or equivalent experience/training
• 5 years of experience in security technology design
• 5 years of network, server, and application systems development experience

Preferred Qualifications- Education & Prior Job Experience

• 5 years designing, deploying, and managing PKI and cryptographic solutions
• 5 years hands-on experience with Identity and Access solutions
• 3 years experience on Network Security and VPN solutions
• 4 + years' experience in NIST 800 series frameworks
• Application coding and scripting via Python, SQL, BASH, or PowerShell

Skills, Licenses & Certifications

• Critical infrastructure, government, and/or aviation experience
• Familiar with NIST Special Publications (e.g. 800-171, 800-53, 800-37)
• Preferred Certifications
  • CISSP - Certified Information Systems Security Professional
  • CISM - Certified Information Security Manager
  • CISA - Certified Information Systems Auditor
  • CEH - Certifed Ethical Hacker
  • GCIH -GIAC Certified Incident Handler
  • GSEC - GIAC Security Essentials
  • GCFA - GIAC Certified Forensic Analyst
  • GREM - GIAC Reverse Engineering Malware
  • CCENT - Cisco Certified Entry Networking Technician
• Ability to perform vulnerability testing, risk analyses and security assessments
• Significant experience in at least two of following domains (Penetration Testing, Authentication & Public Key Infrastructure (PKI), Vulnerability Management, Network Security, Data Security, Identity Management)
• High-level understanding of network exploitation, attack strategies and methods, current IT security technology, software and cyber threat mitigation tools
• Significant experience with virtualization architectures (Citrix, VMWare, Hyper-V)
• Experience collaborating successfully with project managers, engineers, architects, administrators, and customers to deliver projects on time and within budget
• Experience presenting to senior leadership including corporate architecture review boards and governance committees
• Experience with designing, developing, and integrating Active Directory Group Policy, Local Security Policy, and Windows scripts
• Knowledge of cloud technologies and risk assessment criteria (IaaS/PaaS/SaaS)
• Proficient in Agile and SDLC methodologies

What you'll get

Feel free to take advantage of all that American Airlines has to offer:

• Travel Perks: Ready to explore the world? You, your family and your friends can reach 365 destinations on more than 6,800 daily flights across our global network.
• Health Benefits: On day one, you'll have access to your health, dental, prescription and vision benefits to help you stay well. And that's just the start, we also offer virtual doctor visits, flexible spending accounts and more.
• Wellness Programs: We want you to be the best version of yourself - that's why our wellness programs provide you with all the right tools, resources and support you need.
• 401(k) Program: Available upon hire and, depending on the workgroup, employer contributions to your 401(k) program are available after one year.
• Additional Benefits: Other great benefits include our Employee Assistance Program, pet insurance and discounts on hotels, cars, cruises and more

Feel free to be yourself at American

From the team members we hire to the customers we serve, inclusion and diversity are the foundation of the dynamic workforce at American Airlines. Our 20+ Employee Business Resource Groups are focused on connecting our team members to our customers, suppliers, communities and shareholders, helping team members reach their full potential and creating an inclusive work environment to meet and exceed the needs of our diverse world.

Are you ready to feel a tremendous sense of pride and satisfaction as you do your part to keep the largest airline in the world running smoothly as we care for people on life's journey? Feel free to be yourself at American.