Why Work for Frontier Airlines?

At Frontier, we believe the skies should be for everyone. We deliver on this promise through our commitment to Low Fares Done Right. This is more than our tagline - it’s our driving philosophy. Every member of Team Frontier has an important role to play in bringing this vision to life.  Our successful business model allows travelers to take advantage of our fast-growing route network while our bundled and unbundled pricing options allow our customers to personalize their travel experience and only pay for the services they need – saving them money along the way.

What We Stand For

Low Fares Done Right is our mission and we strive to bring it to life every day.  Our ‘Done Right’ promise means delivering not only affordable prices, but making travel friendly and easy for our customers.  To do this, we put a great deal of care into every decision and action we take. We must be efficient with the use of our resources and make smart decisions about how we run our business. We must also innovate and be pioneers - we’re not afraid to try new things.  While our business requires us to fly high in the air, we also consider ourselves down-to-earth in our approach, creating a warm and friendly experience that truly demonstrates Rocky Mountain Hospitality.

Work Perks

At Frontier, we like to think we’re creating something very special for our team members.  Work is why we’re here, but the perks are nice too:

Flight benefits for you and your family to fly on Frontier Airlines. Buddy passes for your friends so they can experience what makes us so great. Discounts throughout the travel industry on hotels, car rentals, cruises and vacation packages. Discounts on cell phone plans, movie tickets, restaurants, luggage and over 2,000 other vendors. Enjoy a ‘Dress for your Day’ business casual environment. Flexible work schedules that support work/life balance. Total Rewards program including a competitive base salary, short term incentives, long-term incentives, paid holidays, 401(k) plan, vacation/sick time and medical/dental/vision insurance that begins the 1st of the month following your hire date. We play our part to make a difference. The HOPE League, Frontier Airlines’ non-profit organization, is dedicated to providing employees financial assistance during catastrophic hardship.

Who We Are 

 Frontier Airlines is committed to offering ‘Low Fares Done Right’ to more than 100 destinations and growing in the United States, Canada, Dominican Republic and Mexico on more than 350 daily flights. Headquartered in Denver, Frontier’s hard-working aviation professionals pride themselves in delivering the company’s signature Low Fares Done Right service to customers. Frontier Airlines is the proud recipient of the Federal Aviation Administration’s 2018 Diamond Award for maintenance excellence and was recently named the industry’s most fuel-efficient airline by The International Council on Clean Transportation (ICCT) as a result of superior technology and operational efficiencies. 

What Will You Be Doing?

The Cybersecurity Engineer will be part of a Cybersecurity team that assesses, designs, implements, troubleshoots, and supports the cybersecurity posture of Frontier’s network infrastructure. The Cybersecurity Engineer will report to the Manager of Cybersecurity Architecture & Engineering, enabling cybersecurity design and implementation efforts to protect Frontier’s network and systems against cyber-attacks and data breaches. The Cybersecurity Engineer is responsible for providing technical input on projects for Frontier’s on-prem and cloud environments. The Engineer is responsible for planning, implementing, maintaining, and supervising cybersecurity controls, practices, and infrastructure.

Essential Functions

Research, design, and deploy resilient, reliable, and scalable security controls for IT/business projects. Monitor, investigate, analyze, respond, and report on incidents identified through system/application logs and security appliances. Provide platform support for cybersecurity technologies include but are not limited to: Data Loss Prevention (DLP), Security Incident Event Management (SIEM), Brand Monitoring, Threat Intelligence, User Behavior Analytics, File Integrity Monitoring, Firewall Analyzer, DDoS Mitigation, Vulnerability Management, Security Hardening, SOAR-Orchestration, Cloud Security Platforms, Secure Email Gateway, and Secure Internet Access. Support detection engineering efforts for SIEM alerts, to notify teams of threat actor activity in the network. Provide technical leadership in designing, implementing, testing, and rolling out of cybersecurity solutions and/or cyber controls in IT/Business projects. Craft and initiate development of cybersecurity architecture designs. Support design, maintenance, and analysis of the network architecture to protect against cybersecurity threats and exposed vectors. Conduct investigation, analysis, and evaluation of projects to determine security risk and feasibility. Support patch and vulnerability management program efforts (such as: vulnerability read-outs, solution analysis, technical direction in administrator breakout sessions) Provide regular status updates to leadership on ongoing projects, maintenance, and systems support. Support cybersecurity service management request queue (incidents/service requests) Research latest security threats, cybersecurity standards/frameworks, and vulnerabilities to assess the organizations threat landscape. Support cybersecurity incident response efforts, handling escalations with Cybersecurity Operations and managed service providers. Execute and improve core functions of incident response including threat detection/prevention, incident response, security monitoring, digital forensics, and vulnerability management. Liaise with other IT technology groups in investigation and resolution of security incidents. Support updates to cybersecurity policies in adaptation to evolving threats. Support and contribute to change control and change approval board functions. Assess vulnerabilities and threats to the network, evaluate available security processes and technologies and make recommendations to management and business partners. Ability to decompose applications and system designs in hybrid cloud architectures to identify potential threats. Collaborate with the IT team to deliver a secure, resilient, and reliable infrastructure environment. Assist in efforts to maintain compliance with PCI-DSS, TSA, SOX, and other external/internal compliance requirements. Participate in and contribute to identification of cybersecurity tools and systems, business continuity planning, and disaster recovery efforts. Participates and contributes to technology projects as assigned. Provide Cybersecurity expertise in evaluation of vendor/3rd party agreements and contracts. Participates in required "on-call" rotations requiring night and weekend availability as scheduled, provide additional availability 24/7 when necessary.

Qualifications

Bachelor’s degree in computer science, technology, or equivalent combination of education and relevant experience (required). 6+ years of relevant cybersecurity operations and/or engineering experience required. 4+ years in security engineering with hands-on experience with enterprise cybersecurity product type: EDR (SentinelOne, Crowdstrike, or Cylance) (required). 4+ years in security engineering with hands-on experience with enterprise cybersecurity product type: Secure Email Gateway (Mimecast, Proofpoint, or Office365 Exchange) (required). 4+ years in security engineering with hands-on experience with enterprise cybersecurity product type: Vulnerability Management (Nessus, Qualys, or Rapid7) (required). 4+ years in security engineering with hands-on experience with enterprise cybersecurity product type: (SIEM (Splunk, Rapid7, or LogRhythm) 3+ years of enterprise firewall administration or auditing experience (required). Industry cybersecurity certification:  CompTIA: Security+ or Pentest+, CEH, CISSP, OCSP, SANS: GCIH or GSEC, CISSP, ISACA: CISA or CISM, Security+, SSCP, or CCNA (required, or willing to attain within 3 months of start date). Hands-on Cloud cybersecurity design and implementation (Azure/AWS) (required) Design and implementation of security controls including experience in applying security framework methodologies; to include NIST, Cloud (CSA), wired, and wireless security principles (required) Experience with Wireshark and NMAP (required) Experience with URL Filtering/Web Proxy management and troubleshooting (required) PCI-DSS or other security compliance environment experience (highly desirable)

Knowledge, Skills and Abilities

Proficient in troubleshooting network/system related issues and effectively manage components in a production environment. Strong understanding of attack vectors, common intrusion techniques, threat intelligence, application/host/network security hardening, micro-segmentation, network access control, networking protocols, and enterprise risk management concepts. Ability to troubleshoot security, networking, client server, Wi-Fi, and VPN issues. Ability to maintain an understanding of industry trends and stay abreast of current vulnerabilities and security concerns, understanding their impact on the organization. Expert knowledge of enterprise firewall management and deployment. Broad and thorough knowledge of enterprise security systems and devices. Proficient in deploying and managing complex Cloud infrastructures (Azure/AWS). Knowledgeable in penetration testing and vulnerability assessments and remediation. Proficient in network traffic and packet analysis. Demonstrable experience working with configuration management/automation tools. Ability to remain organized and to elicit cooperation from a wide variety of internal team members and 3 party providers. Work calmly and methodically under pressure and against tight deadlines. Able to accurately estimate level of effort and deliver projects within scheduled commitments. Ability to quickly learn new systems, devices, and methodologies. Excellent written and verbal communication skills, including the ability to write detailed technical documents. Willing to work more than 40 hours and some weekends. Willing to do On-Call rotation for after hours and weekend support. Communicates clearly and effectively. Manages time efficiently and multi-tasks effectively. Exceptional customer service skills. 

Equipment Operated

Laptop endpoint running Windows and a variety of cybersecurity applications and commercial tools.

Work Environment

Typical office environment, adequately heated and cooled

Will require being on call for afterhours and weekend support

Physical Effort

Light physical effort required by handling objects up to 20 pounds occasionally and/or up to 10 pounds frequently.

Supervision Received

General Direction:  The incumbent normally receives little instruction on day-to-day work and receives general instructions on new assignments.

Positions Supervised

None

Salary Range

$100,104 - $132,870 

Please note: this posting has a closing date of 1/30/2025, midnight MT.

Workplace Policies

At Frontier Airlines, we wholeheartedly support and have a strong commitment to Equal Employment Opportunity (EEO) and Affirmative Action. Frontier is committed to providing equal employment opportunities for all persons regardless of race, color, religion, gender, gender variance, sexual orientation, age, genetic information, martial status, national origin, citizenship status, disability, military, veteran status, and any other basis protected by federal, state, or local laws.

Diversity is an essential part of our success. Our company flourishes because of the unique backgrounds, skills and ideas that our team members contribute every day. We salute and actively recruit veterans. Military experience is valuable and transferable to many of the positions essential to the operations of our airline.

Frontier Airlines is a Zero Tolerance Drug-Free Workplace. All prospective DOT safety-sensitive employees are subject to pre-employment testing for the following drugs and their metabolites: Marijuana, Cocaine, Amphetamines, Opioids and Phencyclidine (PCP). Further, any DOT safety-sensitive job applicant who is found to have tested positive on any required drug or alcohol test at a former employer will be considered ineligible for employment with Frontier.

Disclaimer: The above statements are intended only to describe the general nature and level of work required of the referenced position; they are not intended to be an exhaustive list of all responsibilities, duties, and skills required of individuals in this position.  Please be advised that duties and expectations of this position may be subject to change.