Full Time
Senior Engineer – American Airlines Remote Jobs
Job Description
Job Type: Senior Engineer from home
Location: Texas work from home
Company: American Airlines
- Utilizes expertise in cybersecurity to direct technical research, planning, and architectural design of systems related to digital aircraft to ensure the confidentiality, integrity, and high availability of corporate, vendor, and customer data Defines, develops, and delivers technical solutions, security requirements, and standards that incorporate both industry and company technology standards spanning multiple security domains
- Offers teams supporting digital aircraft, ground, and communication systems internal security discussions.
- Supports cybersecurity standards, laws, and compliance initiatives for the FAA and other governmental agencies.
- interactions with colleagues in the sector such Aviation-ISAC, the IATA Cybersecurity Task Force, and oneworld partners
- provides assistance with cyber-incidents involving AA’s aviation technologies.
- defines, creates, and provides technological solutions, security standards, and requirements that take into account company and industry technology standards covering many security domains.
- delivers and maintains essential work items and artifacts in support of airline operations’ quality assurance, software development, and system review.
- Making certain that digital aircraft systems and terminals are scanned Vulnerability Management techniques and tools
- collaborates with business, IT, and IS teams Risk of failing to promptly resolve compliance issues while pursuing risk reduction goals
- shows a commitment to constant improvement.
- To assure visibility and predictability, maintains an effective approach to problem solving, multitasking, coordinating, and scheduling.
- periodically puts in extra time depending on the demands of the project and the business
Minimum requirements include education and previous work experience.
- Bachelor’s degree in network systems technology, information technology, or a closely related technical field, or comparable experience or training
- 5 years of expertise designing security technology and 5 years of experience developing network, server, and application systems
Prior work experience and education are preferred qualifications.
- Five years spent developing, implementing, and overseeing PKI and cryptographic solutions
- 5 years of practical experience with identity and access management tools
- 3 years of expertise in VPN services and network security
- Experience with NIST 800 series frameworks for at least 4 years
- Python, SQL, BASH, or PowerShell application coding and scripting
Skills, licenses, and certifications
- Experience with critical government, infrastructure, and/or aviation
- A working knowledge of NIST Special Publications, such as 800-171, 800-53, and 800-37.
- Chosen Certifications
- Information systems security professional (CISSP)
- Certified Information Security Manager (CISM)
- Auditor of Certified Information Systems
- A certified ethical hacker (CEH)
- Certified Incident Handler, GIAC
- GIAC Security Essentials (GSEC)
- GIAC Certified Forensic Analyst (GCFA)
- GIAC Reverse Engineering Malware is known as GREM.
- Cisco Certified Entry Networking Technician (CCENT)
- the capacity to carry out security assessments, risk analysis, and vulnerability testing
- Significant expertise in at least two of the following areas: vulnerability management, network security, data security, authentication & public key infrastructure (PKI), and identity management.
- understanding at a high level of network exploitation, attack methodologies and strategies, and contemporary IT security software and solutions
- Experience with virtualization architectures (Citrix, VMWare, Hyper-V) of a significant nature
- a track record of delivering projects on schedule and within budget by working well with project managers, engineers, architects, administrators, and clients
- Presentation skills in front of senior leadership, including corporate architecture review boards and governance committees
- Knowledge of Active Directory Group Policy, Local Security Policy, and Windows scripts, as well as their design, development, and integration
- understanding of IaaS, PaaS, and SaaS risk assessment criteria
- proficiency with Agile and SDLC processes