Chicago, IL, USA
8 days ago
Senior Manager

Connecting People. Uniting the World. There’s never been a more exciting time to join United Airlines As a global company that operates in hundreds of locations around the world — with millions of customers and tens of thousands of employees — we have a unique responsibility to uplift and provide opportunities in the places where we work, live and fly.

We’re on a path toward becoming the best airline in the history of aviation. Join our Cybersecurity and Digital Risk (CDR) team to help us also become the leading cyber-safe airline in the industry. United’s CDR team is tasked with keeping our customers’ and employees’ information safe and secure. Our primary mission is to embed cybersecurity into the DNA of United Airlines by reducing business risk through implementation of strong cybersecurity standard processes.

United offers a competitive benefits package aimed at keeping you happy, healthy and well-traveled. From employee-run "Business Resource Group" communities to world-class benefits like parental leave, 401k and privileges like space available travel, United is truly a one-of-a-kind place to work. Are you ready to travel the world and help us keep our airline cyber safe? Apply today

Key Responsibilities:

Oversees the Insider Threat mission to identify, analyze, and remediate cyber threats from internal sources to the enterprise. Leads the planning, scheduling, and daily supervision of Senior Analysts and Analysts within the Insider Threat team to track incidents, determine when forensic evidence is needed, and drive the root cause analysis, remediation, and prevention of future incidents through analysis of threats from intentional and unintentional cyber-related activity. Align the protections of the organization to standards such as NIST, Mitre Attck, and governance to meet U.S. Department of Defense requirements for Insider Threat mitigation. Drive excellence and timeliness of response and remediation activities, and make recommendations to fill gaps with personnel, training, or process changes. Be a liaison for government reporting requirements, partners, and vendors to be as proactive as possible in developing the latest defenses for United. Develop a word-class cyber Insider Threat team.

Leads implementation of enterprise-wide strategy aligned with industry standard processesEngages with business and ensures alignment with business objectivesAssess/adapt existing operational programs and develop capabilities to ensure ongoing successFind opportunities to use and operationalize existing security investments while also identifying gaps in our defenses and recommending new technologies.Develop, define and ensure continuous improvement of policies, procedures, programs and technology (including automation)Define and develop metrics program to track maturity, evolution, and health of cybersecurity program over timeEnsures program is meeting intended purpose and metricsEffectively calls out, communicates and mitigates risk and issuesMake decisions on containment of networked information system assets, and drive rapid response to analyze root cause, and remediationEngage, collaborate and partner with leadership, key collaborators and broader security team on key initiatives to drive day-to-day security operationsActs as a trusted advisor to internal and external partners (division leadership, peers, employees)Promote cross-functional collaboration and support between Cyber Defense, internal, and external partnersConsult with outside parties such as U.S. Government agencies, third-party vendors, and experts to identify and prioritize threats and protections neededProvide guidance and direction to the Insider Threat teamEmpowers, coaches, and develops team membersLeads the team and manages individuals to achieve results across the enterpriseDevelop leadership strategies that harmonize corporate and employee objectives by setting and driving common goalsIdentify and provide opportunities for positive individual growth for both self and employeesPerform short and long-term resources planning and ensure the proper number of resources and right skills are available to meet project goals and schedules (i.e. recruiting/hiring)Assist with annual budgeting and monthly forecasting

United values diverse experiences, perspectives, and we encourage everyone who meets the minimum qualifications to apply. While having the “desired” qualifications make for a stronger candidate, we encourage applicants who may not feel they check ALL of those boxes. We are always looking for individuals who will bring something new to the table.

Connecting People. Uniting the World. There’s never been a more exciting time to join United Airlines As a global company that operates in hundreds of locations around the world — with millions of customers and tens of thousands of employees — we have a unique responsibility to uplift and provide opportunities in the places where we work, live and fly.

We’re on a path toward becoming the best airline in the history of aviation. Join our Cybersecurity and Digital Risk (CDR) team to help us also become the leading cyber-safe airline in the industry. United’s CDR team is tasked with keeping our customers’ and employees’ information safe and secure. Our primary mission is to embed cybersecurity into the DNA of United Airlines by reducing business risk through implementation of strong cybersecurity standard processes.

United offers a competitive benefits package aimed at keeping you happy, healthy and well-traveled. From employee-run "Business Resource Group" communities to world-class benefits like parental leave, 401k and privileges like space available travel, United is truly a one-of-a-kind place to work. Are you ready to travel the world and help us keep our airline cyber safe? Apply today

Key Responsibilities:

Oversees the Insider Threat mission to identify, analyze, and remediate cyber threats from internal sources to the enterprise. Leads the planning, scheduling, and daily supervision of Senior Analysts and Analysts within the Insider Threat team to track incidents, determine when forensic evidence is needed, and drive the root cause analysis, remediation, and prevention of future incidents through analysis of threats from intentional and unintentional cyber-related activity. Align the protections of the organization to standards such as NIST, Mitre Attck, and governance to meet U.S. Department of Defense requirements for Insider Threat mitigation. Drive excellence and timeliness of response and remediation activities, and make recommendations to fill gaps with personnel, training, or process changes. Be a liaison for government reporting requirements, partners, and vendors to be as proactive as possible in developing the latest defenses for United. Develop a word-class cyber Insider Threat team.

Leads implementation of enterprise-wide strategy aligned with industry standard processesEngages with business and ensures alignment with business objectivesAssess/adapt existing operational programs and develop capabilities to ensure ongoing successFind opportunities to use and operationalize existing security investments while also identifying gaps in our defenses and recommending new technologies.Develop, define and ensure continuous improvement of policies, procedures, programs and technology (including automation)Define and develop metrics program to track maturity, evolution, and health of cybersecurity program over timeEnsures program is meeting intended purpose and metricsEffectively calls out, communicates and mitigates risk and issuesMake decisions on containment of networked information system assets, and drive rapid response to analyze root cause, and remediationEngage, collaborate and partner with leadership, key collaborators and broader security team on key initiatives to drive day-to-day security operationsActs as a trusted advisor to internal and external partners (division leadership, peers, employees)Promote cross-functional collaboration and support between Cyber Defense, internal, and external partnersConsult with outside parties such as U.S. Government agencies, third-party vendors, and experts to identify and prioritize threats and protections neededProvide guidance and direction to the Insider Threat teamEmpowers, coaches, and develops team membersLeads the team and manages individuals to achieve results across the enterpriseDevelop leadership strategies that harmonize corporate and employee objectives by setting and driving common goalsIdentify and provide opportunities for positive individual growth for both self and employeesPerform short and long-term resources planning and ensure the proper number of resources and right skills are available to meet project goals and schedules (i.e. recruiting/hiring)Assist with annual budgeting and monthly forecasting

United values diverse experiences, perspectives, and we encourage everyone who meets the minimum qualifications to apply. While having the “desired” qualifications make for a stronger candidate, we encourage applicants who may not feel they check ALL of those boxes. We are always looking for individuals who will bring something new to the table.

What’s needed to succeed (Minimum Qualifications):Bachelors degree required7 years of relevant work experiencePrior Insider Threat experience leading/building a team in a large organizationExcellent written and oral skillsSkills in conducting and concluding investigations initiated from cyber defense detection sourcesAbility to conduct successful investigations with partners from legal, human resources, governmental, and third-party resources that contain and minimize the threatAbility to gather, analyze, and distribute timely and accurate reports to leadership to minimize impacting the security of customers, employees, operation, and facilitiesAbility to apply intelligence provided by government and partner entities to enhance investigations and cybersecurity productsMust be legally authorized to work in the United States for any employer without sponsorshipSuccessful completion of interview required to meet job qualificationReliable, punctual attendance is an essential function of the positionWhat will help you propel from the pack (Preferred Qualifications):Masters degree or equivalent experience1 or more industry certifications such as CISSP, CISA, GCFA2 years as a people leader4 years in cybersecurity4 years in investigationsFamiliarity with airline business systems and processesAbility to obtain a Secret Clearance

Bonus eligible: yes

Post expiration date: 12/31/2024

What’s needed to succeed (Minimum Qualifications):Bachelors degree required7 years of relevant work experiencePrior Insider Threat experience leading/building a team in a large organizationExcellent written and oral skillsSkills in conducting and concluding investigations initiated from cyber defense detection sourcesAbility to conduct successful investigations with partners from legal, human resources, governmental, and third-party resources that contain and minimize the threatAbility to gather, analyze, and distribute timely and accurate reports to leadership to minimize impacting the security of customers, employees, operation, and facilitiesAbility to apply intelligence provided by government and partner entities to enhance investigations and cybersecurity productsMust be legally authorized to work in the United States for any employer without sponsorshipSuccessful completion of interview required to meet job qualificationReliable, punctual attendance is an essential function of the positionWhat will help you propel from the pack (Preferred Qualifications):Masters degree or equivalent experience1 or more industry certifications such as CISSP, CISA, GCFA2 years as a people leader4 years in cybersecurity4 years in investigationsFamiliarity with airline business systems and processesAbility to obtain a Secret Clearance

Bonus eligible: yes

Post expiration date: 12/31/2024

Confirm your E-mail: Send Email