Principal Architect - Application Cybersecurity: Safeguarding the Future of Aviation through Innovative Cybersecurity Solutions

Join United Airlines' Cybersecurity and Digital Risk Team as a Principal Architect - Application Cybersecurity United Airlines is on a mission to become the best airline in the history of aviation, and we're seeking a highly skilled Principal Architect - Application Cybersecurity to join our innovative Cybersecurity and Digital Risk (CDR) team. As a global company operating in hundreds of locations worldwide, we recognize our responsibility to protect our customers' and employees' information and provide a cyber-safe experience. Our CDR team is dedicated to embedding cybersecurity into the DNA of United Airlines by implementing robust cybersecurity standard processes. As a Principal Architect - Application Cybersecurity, you will play a critical role in ensuring our services, applications, and websites are designed and implemented with security in mind, aligning with our secure development standards. Key Responsibilities: Driving Cybersecurity Excellence Validate that our services, applications, and websites are designed and implemented in accordance with United's secure development standards, working closely with development teams, product teams, and other stakeholders. Serve as a recognized expert in defining security requirements, performing application security assessments, and providing remediation guidance and advice to developers. Lead architecture design evaluations and threat modeling of our products (cloud and on-prem), recommending and implementing products/services that support operational needs and security requirements. Assist in leading the design, definition, and implementation of security best practices and standards, ensuring product development teams understand and adhere to them. Promote and contribute to the continuous improvement of our security strategy, supporting risk prioritization and helping train and support team members. Lead the improvement of security accessibility through automation, continuous integration pipelines, and other means, performing code analysis of applications using SAST, DAST, and SCA scanning solutions. Act as a technical point of contact for product teams regarding automation, CI/CD, and remediation guidance. Qualifications: What We're Looking For To succeed in this role, you'll need: Minimum Qualifications: A Bachelor's degree in STEM, Computer Science, or a related field. A minimum of 9 years of experience in a related field, with a deep understanding of OWASP Top 10 and CWE 25, and the ability to implement and integrate remediation strategies. The ability to collaborate with development teams to build secure solutions, communicating risks and bringing consensus to diverse priorities. Knowledge of common vulnerabilities and attack vectors, ubiquitous encryption technologies, and common authentication protocols. Skilled in application risk assessment, risk categorization, and application security testing tools. A solid understanding of secure network and system design in both cloud and conventional environments, as well as network and web-related protocols. Excellent problem-solving, critical thinking, interpersonal, collaboration, written, and verbal communication skills. Must be legally authorized to work in the United States for any employer without sponsorship. Preferred Qualifications: A Master's degree or equivalent experience. Certifications such as CEH, GSEC, CISM, Comp TIA Security +, CISSP, CISA, SSCP, CASP+, or OSCP. 12 years of experience in a related field, including threat modeling, secure coding, identity management and authentication, software development, cryptography, system administration, and network security, cloud computing. Experience with application penetration testing to demonstrate and test exploitability of vulnerabilities. Familiarity with waterfall and agile development processes, with the ability to integrate secure development practices into both models. Experience with multiple programming languages and success in implementing effective Secure SDLC frameworks across a large corporation. What We Offer: A Rewarding Career with United Airlines As a Principal Architect - Application Cybersecurity at United Airlines, you'll enjoy a competitive compensation package, including: A salary range of $126,225 to $185,130, dependent on job-related, non-discriminatory factors such as experience, education, and skills. Bonus eligibility. A comprehensive benefits package, including medical, dental, vision, life, accident, and disability insurance, parental leave, employee assistance program, commuter benefits, paid holidays, and paid time off. A 401(k) plan with employee and company contribution opportunities. Flight privileges and space-available travel. Our Culture: Diversity, Equity, and Inclusion United Airlines is an equal opportunity employer, committed to diversity, equity, and inclusion. We value diverse experiences, perspectives, and encourage everyone who meets the minimum qualifications to apply. Our company culture is built on a foundation of respect, empathy, and inclusivity, providing a work environment that is welcoming and supportive for all employees. Why Join Us? By joining our team as a Principal Architect - Application Cybersecurity, you'll have the opportunity to: Drive cybersecurity excellence and contribute to the development of a cyber-safe airline. Work with a talented team of professionals who are passionate about cybersecurity and committed to protecting our customers' and employees' information. Develop your skills and expertise in a dynamic and rapidly evolving field. Enjoy a competitive compensation package and benefits. Be part of a company that is shaping the future of aviation. Ready to Apply? We encourage you to apply, even if you feel you're not a perfect match. We're looking for great people to join our friendly team and contribute to our mission of becoming the best airline in the history of aviation. Don't miss this opportunity to join United Airlines' Cybersecurity and Digital Risk team and shape the future of aviation through innovative cybersecurity solutions. Apply for this job Apply tot his job Apply To this Job