Director, Cybersecurity Operations

Intro

Are you ready to explore a world of possibilities, both at work and during your time off? Join our American Airlines family, and youll travel the world, grow your expertise and become the best version of you. As you embark on a new journey, youll tackle challenges with flexibility and grace, learning new skills and advancing your career while having the time of your life. Feel free to enrich both your personal and work life and hop on board

Why you'll love this job

The Director, Cybersecurity Operations will lead a team overseeing security operations & monitoring, incident response, forensics collection and analysis, security operations engineering, detection engineering, and threat and intelligence management activities, thereby ensuring the effective management and protection of information systems and data to support overall business objectives.

What you'll do

Lead the Cybersecurity Operations function and their real time detection and mitigation capabilities.

Drive active interaction and cooperation between incident response and threat intelligence teams, and critical business and IT stakeholders.

Lead the implementation and maintenance of security operations controls, including incident response plans, SOC processes, security monitoring tools, and threat intelligence platforms.

Identify and diagnose potential threats, including root cause analysis and after-action reviews to ensure security controls defend the enterprise against malicious network attacks, including Firewalls, IPS, DLP, WAF, proactive blocking, white/black listing, etc.

Manage resolution of cyber security incidents and coordinate engineering support for security systems.

Drive creation and implementation of custom alerting rules, searches, and dashboards for review and investigations.

Manage Cybersecurity Incident Response support ticket analysis to identify and implement improvements, reports findings, data, and KPIs to leadership.

Lead the security operations engineering team in designing, implementing, and maintaining security infrastructure, including firewalls, intrusion detection systems, SEIM, SOAR and data loss prevention systems.

Collaborate with the detection engineering team to develop and enhance security monitoring and detection capabilities, leveraging advanced analytics and threat intelligence.

Own the design and engineering of key security tools, including the automation of tasks and processes through scripting and programming.

Manage Cybersecurity Incident Response vendor relationships against SLAs, expectations, and contractual terms.

Partner with key stakeholders to ensure network, asset, and data integrity and security.

Review proposed firewall, proxy, and other networking infrastructure changes to determine secure rules, while meeting the needs of the business with a risk-based approach.

Partner with peer organizations to support threat response and drive directed and undirected threat hunting activity.

Collaborate with IT and business stakeholders to drive remediation of high-risk insecure behaviors.

All you'll need for success

Minimum Qualifications- Education & Prior Job Experience

Demonstrates the highest level of ethics and integrity

Bachelors Degree in Computer Science, Computer Engineering, Technology, Information Systems (CIS/MIS), Engineering or related technical discipline, or equivalent experience/training; Masters degree in Cybersecurity, Information Assurance, or related field preferred.

7 years of progressive leadership experience, including experience leading other technical managers and team members

Proven experience in cybersecurity, with 7 years of experience in incident response activities

Deep understanding of network security, vulnerability management, incident response, and security operations center (SOC) operations.

Relevant professional certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified in Risk and Information Systems Control (CRISC), or equivalent are highly desirable.

Experience working in highly-regulated industries such as finance, healthcare, transportation, or government preferred

Experience in managing and responding to cybersecurity incidents, including investigation, containment, and remediation activities.

In-depth knowledge of relevant cybersecurity frameworks (e.g., NIST CSF) and regulations (e.g., TSA Cyber Amendment, HIPAA, GDPR).

Familiarity with industry-specific regulations (e.g., TSA, FAA, PCI DSS) and their cybersecurity requirements.

Experience with supporting the development of regulatory cyber standards for aviation preferred.

Knowledge of cybersecurity technologies, tools, and best practices, including familiarity with security information and event management (SIEM) systems and other security monitoring tools.

Strong knowledge of incident handling, and threat intelligence processes and methodologies.

Commitment to remain current with the latest cybersecurity trends, threats, and regulatory changes.

Experience in aviation cybersecurity regulations, aircraft architecture principles, embedded system security and software supply chain protections.

Preferred Qualifications- Education & Prior Job Experience

Ability to be self-driven with a natural aptitude for engaging employees in multiple workgroups

Outstanding leadership and coaching skills, with the proven ability to inspire high levels of performance and commitment from a team

Ability to think strategically, negotiate skillfully, digest complex details, and use sound judgment and initiative in making decisions

Ability to take ownership and responsibility for assigned strategies and champion them across the Cybersecurity and IT organization

Exceptional problem-solving, analytical, and critical thinking ability

Demonstrated outstanding project management, organizational, and time management skills

Excellent communication and presentation skills, with the ability to handle complex topics comfortably with both technical and non-technical audiences, and to interact effectively with all levels, both verbally and written

Ability to influence through outstanding interpersonal skills, collaboration, and negotiation skills

Ability to build and facilitate relationships at all levels of the organization, both internally and externally

Ability to adapt to unexpected events, new facts, and rapidly changing circumstances

Ability to thrive in a sense-of-urgency environment and leverage best practices

Believes in and promotes the American Airlines five leadership attributes:

Caring We care about all team members

Collaboration We succeed as a team

Development We build future leaders

Results We drive to be the best

Future We continually challenge the status quo

What you'll get

Feel free to take advantage of all that American Airlines has to offer:

Travel Perks: Ready to explore the world? You, your family and your friends can reach 365 destinations on more than 6,800 daily flights across our global network.

Health Benefits: On day one, youll have access to your health, dental, prescription and vision benefits to help you stay well. And thats just the start, we also offer virtual doctor visits, flexible spending accounts and more.

Wellness Programs: We want you to be the best version of yourself thats why our wellness programs provide you with all the right tools, resources and support you need.

401(k) Program: Available upon hire and, depending on the workgroup, employer contributions to your 401(k) program are available after one year.

Additional Benefits: Other great benefits include our Employee Assistance Program, pet insurance and discounts on hotels, cars, cruises and more

Feel free to be yourself at American

From the team members we hire to the customers we serve, inclusion and diversity are the foundation of the dynamic workforce at American Airlines. Our 20+ Employee Business Resource Groups are focused on connecting our team members to our customers, suppliers, communities and shareholders, helping team members reach their full potential and creating an inclusive work environment to meet and exceed the needs of our diverse world.

Are you ready to feel a tremendous sense of pride and satisfaction as you do your part to keep the largest airline in the world running smoothly as we care for people on lifes journey? Feel free to be yourself at American.

Discrimination and all unlawful harassment (including sexual harassment) in employment is not tolerated. We encourage success based on our individual merits and abilities without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, disability, marital status, citizenship status, military status, protected veteran status or employment status. We support and obey laws that prohibit discrimination everywhere we do business. American Airlines, Inc fully considers all qualified applicants including those with a criminal history.

EQUAL EMPLOYMENT OPPORTUNITY/ AFFIRMATIVE ACTION POLICY

American Airlines maintains a continuing policy of nondiscrimination in employment. It is our policy to provide equal opportunity and access for all persons, without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, or status as a disabled veteran or other protected veteran, in all phases of the employment process and in compliance with applicable federal, state, and local laws and regulations. This policy of nondiscrimination shall include, but not be limited to, the following employment decisions and practices: hiring; upgrading; promotions; demotions or transfers; layoffs; recalls; terminations; rates of pay or other forms of compensation; selection for training, including apprenticeship; and recruitment or recruitment advertising.