Firm Name: United Airlines

Numbers of Jobs: Principal Architect

Education Need: Graduate

Job Hours: 8

Payment: $20-$30/Hours

What's Job City: Chicago 

Job Details:

Description.

 More people than ever have the chance to work for United Airlines. The greatest airline in the annals of aviation is where we're going. Moving people from one place to another is only one aspect of our shared objective, "Connecting People, Uniting the World.". To fulfill our special obligation to uplift and create opportunities in the communities in which we work, live, and fly, we require a workforce that is genuinely diverse and inclusive. This is especially true considering that we are a large multinational corporation with tens of thousands of employees and millions of clients. As we continue to grow, we will hire tens of thousands of people for every department within the airline. A competitive benefits package that is designed to keep you happy, healthy, and mobile comes with our careers. With employee-run "Business Resource Group" communities, elite benefits like parental leave and 401k, and privileges like space available travel, United is truly a one-of-a-kind place to work. Are you ready to travel?

 We see inclusion as the foundation of everything we do and as a catalyst for innovation. United's global digital technology team, which is made up of a diverse group of people who collaborate using cutting-edge technology, is creating the greatest airline in the history of aviation. Our team creates, develops, and supports technology solutions that can scale massively with the aid of cutting-edge architectures, data analytics, and digital solutions.

 Principal duties:.

 We work with a Principal Architect - Application Cybersecurity to make sure that our services, applications, and websites are created and implemented in accordance with United's secure development standards. As a senior position, the Principal Architect works closely with the product teams, development teams, and other teams from across the organization to integrate security into the product lifecycle from design to deployment. The Principal Architect is a well-known authority on creating security requirements, performing application security assessments, and giving developers remediation advice and direction. The Principal Application Security Architect might be contacted at any time to evaluate a new system, look into a change that is being considered for an existing application, or provide guidance on best practices for coding and application security.

•  Seeked out as a dependable advisor or consultant to assist with the creation of security designs, requirements, risk monitoring, and mitigation guidance in accordance with industry best practices and legal requirements.
•  takes the lead in assessing the architecture designs and threat modeling of our products (cloud and on-premises).
•  The use of goods and services that support operational demands and security standards is advised.
•  Direct the design, definition, and implementation of these practices to ensure that the product development teams are aware of security best practices and standards.
•  supports risk prioritization and encourages and contributes to the ongoing improvement of our security strategy.
•  support and training for team members is provided.
•  leads the way in improving accessibility of security through techniques like automation and continuous integration pipelines.
•  Apply SAST, DAST, and SCA scanning solutions while performing manual vulnerability analysis and code analysis of applications.
•  The technical point of contact for product teams with regards to automation, CI/CD, and remediation guidance.
•  United values the diversity of experiences and perspectives, so all qualified applicants are encouraged to apply. We support candidates who don't feel they completely satisfy the "desired" requirements even though having those credentials makes a stronger candidate.

 Qualifications.

 What is necessary to succeed (Minimum Requirements):.

•  Bachelor's in computer science.
•  a minimum of nine years in a related field.
•  Deep understanding of the CWE 25 and OWASP Top 10; aptitude for putting remediation measures into action.
•  Ability to communicate risks and come to agreement on a variety of priorities while collaborating with development teams to create secure solutions.
•  a working knowledge of widely used encryption techniques, standard authentication protocols, and regular attack points and vulnerabilities.
•  capable of assessing and classifying risks as well as using tools for application security testing.
•  having practical experience with industry standards, reference architectures, and best practices.
•  strong familiarity with the protocols related to the web and networks, as well as with the design of secure networks and systems in both cloud-based and traditional settings.
•  substantial understanding of frameworks, protocols, layer 7 application technologies, web applications, and web servers with regard to the creation and deployment of applications.
•  Self-drive and the ability to function independently.
•  Strong verbal and written communication skills, as well as excellent interpersonal, collaborative, and critical thinking abilities.
•  Without sponsorship, one needs to be legally qualified to work in the US for any employer.
•  You must prevail in the interview in order to be considered for the job.
•  Attendance consistency and punctuality are requirements for the position.

 What will set you apart from the competition (preferred qualifications):.

•  a master's degree.
•  Minimum of 12 years in a related field, with any combination of the following skills: threat modeling, secure coding, identity management and authentication, software development, cryptography, system administration and network security, cloud computing.
•  Certified Ethical Hacker, or CEH.
•  The GIAC GSEC program.
•  (CISM) Certified Information Security Manager.
•  A CompTIA Security Plus certification.
•  Certified Professional in Information Systems Security (CISSP).
•  certification as an information systems auditor (CISA).
•  Certified Systems Security Practitioner (SSCP).
•  By CompTIA, you can become a Certified Advanced Security Professional (CASP+).
•  Professional Certified in Occupational Security (OSCP).
•  Apply penetration testing to applications to demonstrate and test the exploitability of vulnerabilities.
•  knowing how to apply secure development practices to both waterfall and agile development processes.
•  multiple language programming expertise.
•  implementation of successful Secure SDLC frameworks by a large corporation.

 United Airlines respects diversity as an employer. United Airlines recruits, hires, trains, pays, and promotes staff members regardless of their nationality, gender identity, sexual orientation, physical capabilities, age, veteran status, or any other protected status as stipulated by applicable law. People with disabilities will receive a reasonable accommodation to participate in the hiring process, attend job interviews, and perform necessary job duties, we'll make sure of that. Email JobAccommodations@united . com if you require accommodations.