Senior Security Engineer, Risk Reporting, Storyteller, GRC

How you'll help us Keep Climbing (overview & key responsibilities)

(Full remote option is not available for this role)

Delta is focused on sustaining a strong IT operation, growing our capabilities, and maximizing optimization across each of our tech hubs to elevate the travel experience for our customers and empower our 90,000 Delta people.

We’re committed to fostering innovation, and we’re excited to invite you to be part of our journey as we shape the future of technology at the world’s best airline

We are looking for a highly motivated, curious, independent, and analytical Senior Security Engineer for the GRC IT Risk Management team. This role requires collaborations with key Information Security and Information Technology partners across our organization to identify and evaluate technology-related risks, recommend effective risk remediation plans aligning to Delta’s standards, and effectively translate the risk findings and remediation recommendations to IT leadership to support drive remediation plans.

As a Senior Security Engineer of GRC IT Risk team, you will be responsible for:

• Owning successful collaborations between Information Security and Information Technology stakeholders to identify, evaluate, and prioritize technology-related risks.

• Preparing bi-monthly Risk reports that summarize the top priority technology-related risks at Delta with supporting data and evidence to inform the IT senior leadership.

• Apply assessment data of identified threats in risk decision making.

• Keep up with industry indicators useful for identifying technology trends and associated risks, assess and communicate the potential impact of these risks to Delta.

• Maintaining a close partnership with Delta’s Threat Intelligence team to be informed of current and emerging threats, translate threats to potential risks, and identify feasible risk mitigation strategies.

• Collaborate and partner with other risk organizations at Delta. Align IT Risk’s approach with Delta’s risk tolerance/risk management approach where possible.

• Lead Information Security assessment process, blending industry best practices with Delta’s culture and risk posture.

• Tackle “big” problems, provide options, and drive resolution.

• Perform special projects as assigned, while effectively manage time with competing priorities.

What you need to succeed (minimum qualifications)

• 5+ years of related experience including Information Security GRC with an emphasis on risk reporting, IT Risk Management, and/or IT Audit.

• Experience with simplifying and storytelling complex risk topics for leadership (reports and presentations).

• Ability to develop, execute, and deliver projects independently.

• Ability to execute multiple deliverables simultaneously by effectively prioritizing workload independently.

• Ability to clearly and understandably communicate complex risk and controls information to stakeholders outside of Information Security.

• Strong organizational and analytical skills with attention to detail and the ability to think strategically and drive long-term strategic planning, resource allocation, and continuous improvement.

• Demonstrate ability to be independent and self-motivated, while able to pivot to emerging priorities and navigate through ambiguous situations.

• Acquire and maintain a working knowledge of relevant laws, regulations, policies, standards, and compliance obligations.

• Collaborate and partner with other risk organizations at Delta. Align IT Risk’s approach with Delta’s risk tolerance/risk management approach where possible.

• Leverage industry best practices for evaluating, implementing, and disseminating Information Security internal assessments, monitoring, detecting, and remediation.

• Work as a member of the broader GRC, IT and Delta teams. Do what’s right for Delta.

• Operate with integrity and a positive attitude.

• Drive awareness and knowledge of security.

• Consistently prioritizes safety and security of self, others, and personal data.

• Embraces diverse people, thinking, and styles.

• Possesses a high school diploma, GED, or high school equivalency.

• Is at least 18 years of age and has authorization to work in the United States.

What will give you a competitive edge (preferred qualifications)

• Bachelor’s degree or higher in a relevant field (information systems, cybersecurity, communications, behavioral science, and/or computer science).

• Experience across Information Security and IT domains such as Governance, Risk, and Compliance, IT operations, incident response, identity and access management, penetration testing, vulnerability scanning, e-discovery & forensics, application development, infrastructure, or technical support

• Professional certifications such as CISSP, CISA, CISM, OSCP and CEH

• Experience with simplifying and storytelling complex risk topics for leadership (reports and presentations).

• Creative and visual skills including graphic, web, print and slide design.

• Meticulous attention to detail and accuracy

• Experience with RSA Archer or equivalent GRC tool.

Benefits and Perks to Help You Keep Climbing

Our culture is rooted in a shared dedication to living our values – Care, Integrity, Resilience and Servant Leadership – every day, in everything we do. At Delta, our people are our success. At the heart of what we offer is our focus on Sharing Success with Delta employees. Exploring a career at Delta gives you a chance to see the world while earning great compensation and benefits to help you keep climbing along the way:

• Competitive salary, industry-leading profit sharing program, and performance incentives

• 401(k) with generous company contributions up to 9%

• New hires are eligible for up to 2-weeks of vacation. This is earned for use in the following vacation year (April 1 – March 31)

• In addition to vacation, new hires are eligible for up to 56 hours of paid personal time within a 12-month period

• 10 paid holidays per calendar year

• Birthing parents are eligible for 12-weeks of paid maternity/parental leave

• Non-birthing parents are eligible for 2-weeks of paid parental leave

• Comprehensive health benefits including medical, dental, vision, short/long term disability and life insurance benefits

• Family care assistance through fertility support, surrogacy and adoption assistance, lactation support, subsidized back-up care, and programs that help with loved ones in all stages

• Holistic Wellbeing programs to support physical, emotional, social, and financial health, including access to an employee assistance program offering support for you and anyone in your household, free financial coaching, and extensive resources supporting mental health

• Domestic and International space-available flight privileges for employees and eligible family members

• Career development programs to achieve your long-term career goals

• World-wide partnerships to engage in community service and innovative goals created to focus on sustainability and reducing our carbon footprint

• Business Resource Groups created to connect employees with common interests to promote inclusion, provide perspective and help implement strategies

• Recognition rewards and awards through the platform Unstoppable Together

• Access to over 500 discounts, specialty savings and voluntary benefits through Deltaperks such as car and hotel rentals and auto, home, and pet insurance, legal services, and childcare

Delta Air Lines, Inc. is an Equal Employment Opportunity / Affirmative Action employer and provides reasonable accommodation in its application process for qualified individuals with disabilities and disabled veterans. If you are a qualified individual, you may request a reasonable accommodation if you are unable or limited in your ability to access job openings through this site, apply for jobs through Delta’s online system, or at any point in the selection process. To request a reasonable accommodation, please click here