Principal Architect - Cloud Cybersecurity (Remote)

Find your future at United! We’re reinventing what our industry looks like, and what an airline can be – from the planes we fly to the people who fly them. When you join us, you’re joining a global team of 100,000+ connected by a shared passion with a wide spectrum of experience and skills to lead the way forward.

Join our Cybersecurity and Digital Risk (CDR) team to help us also lead the airline industry in cyber-safety. United’s CDR team is tasked with keeping our customers’ and employees’ information safe and secure. Our primary mission is to embed cybersecurity into the DNA of United Airlines by reducing business risk through implementation of strong cybersecurity standards.

Achieving our ambitions starts with supporting yours. Evolve your career and find your next opportunity. Get the care you need with industry-leading health plans and best-in-class programs to support your emotional, physical, and financial wellness. Expand your horizons with travel across the world’s biggest route network. Connect outside your team through employee-led Business Resource Groups.

Create what’s next with us. Let’s define tomorrow together. Apply today!

The Principal Architect – Cloud Cybersecurity leads efforts to mature cloud security capabilities for United Airlines. This is a critical part of a cross-disciplinary Cyber team responsible for full stack security architecture. In this role the Architect will work on the creation and maintenance of security relevant documentation and partner with product, platform, engineering, and operations teams to ensure the adoption of security best practices across the entire application or system lifecycle. The role will help continuously improve our cyber controls and associated playbooks, workflows, processes, and procedures.

• Conduct threat modeling, end-to-end security evaluation, design and development of cloud security policies, standards, and procedures for various types of public/private/hybrid clouds.
• Demonstrate expert technology competence in two or more domains such as security, resiliency, infrastructure, platform, product, endpoint, application, identity management, and data security, and zero trust.
• Actively partner with stakeholders to understand business requirements and develop supporting security and resiliency principles to ensure adoption of industry and enterprise standard methodologies.
• Develop and promote security and resiliency architecture strategies, frameworks and patterns while partnering closely with other cybersecurity teams and collaborating with partner organizations.
• Assist in defining and implementing Security Standards/frameworks.
• Train and coach development and engineering teams to integrate CI/CD pipeline tools, test plans and vulnerabilities assessment tools for Cloud.
• Serve as a champion for secure infrastructure-as-code for end-to-end configuration and overall success of the IaaS, PaaS, and SaaS environments.
• Ensure program(s) is meeting intended purpose and metrics.

• Bachelor's degree required.
• 7+ years of technical experience, with major emphasis on cloud architecture.
• Expert in AWS cloud technology, in areas such as architecture reviews, infrastructure as code, and standards.
• Knowledge of security protocols, cryptography, and secure network architectures.
• Experienced with scripting and automation tools.
• Working knowledge of compliance standards (e.g., GDPR, HIPAA, PCI DSS, etc.).
• Ability to manage business and external partners.
• Ability to work independently and self-motivate.
• Excellent problem solving, critical thinking, interpersonal, collaboration, written and verbal communication skills.
• Must be legally authorized to work in the United States for any employer without sponsorship.
• Successful completion of interview required to meet job qualification.
• Reliable, punctual attendance is an essential function of the position.

• Master's degree in computer science, Engineering, IT, Data Science, Cybersecurity.
• CCIE, CCDE or alternate vendor equivalent.
• AWS Solution Architect Pro., Networking, and Security Specializations.
• CISSP, ISSAP, ISSEP, ISSMP.
• CISM, CRISC, CEH, GIAC Family.
• CKA and Security (Kubernetes).
• 10+ years of technical experience.
• 7 years directly related to cloud.
• Expert knowledge of identity and access management (IAM).
• Expert knowledge of network security and data encryption.
• Expert knowledge in security automation and orchestration.

Post expiration date: 3/31/2025