Senior Engineer - Cybersecurity Operations & Engineering

Description

Join our Cybersecurity and Digital Risk (CDR) team to help us also lead the airline industry in cyber-safety. United's CDR team is tasked with keeping our customers' and employees' information safe and secure. Our primary mission is to embed cybersecurity into the DNA of United Airlines by reducing business risk through implementation of strong cybersecurity standards.

Job overview and responsibilities

The Senior Engineer - Cybersecurity Operations and Engineering provides technical expertise covering a wide range of IT security solutions. As part of the security operations team, the Senior Engineer - Cybersecurity Operations and Engineering works to create and maintain a secure operating environment for users and business partners by securing network boundaries, ensuring infrastructure is hardened against attacks, and providing infrastructure security solutions to protect highly sensitive data.

• Deploy, configure, and manage perimeter web infrastructure security solutions and platforms to defend against various forms of layer-3 denial of service (DOS), layer-7 advanced attacks, advanced bots, and targeted threat actors
• Participate in design, build, and maintenance of infrastructure emphasizing security controls and deployment of cutting-edge defense focused system solutions
• Develop process and technology to secure and monitor new technologies as they are onboarded
• Proactively propose security improvements and stay abreast of evolving security threats
• Develop and maintain comprehensive documentation, configuration guides, and standard operating procedures
• Participation in compliance projects as a security Subject Matter Expert

Qualifications

What's needed to succeed (Minimum Qualifications):

• Bachelor's degree required (Computer Science or technical field preferred)
• 4+ years of enterprise-level engineering
• Significant background in deploying, configuring, and managing various Akamai security suite solutions
• Deep understanding of large, ultra-high availability, enterprise operational environments providing critical services and functions
• Experience with hands-on security incident investigation, with associated techniques and best practices to identify threat actors' malicious activity quickly and effectively
• Detailed understanding of advanced persistent threat, cybercrime and other associated cyber threat tactics, and adjust rules/policies to adapt to new and emerging threats
• Experience in areas such as web security principles, Distributed Denial of Service (DDoS) mitigation, Web Application Firewall (WAF), API Security, Content Delivery Network (CDN) optimization, and network protocol security spanning layer-3 and layer-7
• Able to support a 24/7 operational environment
• Demonstrated a high sense of urgency with strong pragmatic problem-solving skills with the ability to identify, troubleshoot, and resolve complex configuration or security challenges.
• Must be legally authorized to work in the United States for any employer without sponsorship
• Successful completion of interview required to meet job qualification
• Reliable, punctual attendance is an essential function of the position

What will help you propel from the pack (Preferred Qualifications):

• Master's degree
• Industry certifications such as the CISSP, CISM, CISA, GCIH, CFCE, GFCA, and/FE
• Experience assisting with web identity threat detection and response
• 7+ years of enterprise-level systems engineering
• 7+ years in perimeter web security detection and prevention systems