Architect Enterprise Security
Job Description
The Enterprise Security Architect, Cloud Architect is a hands-on team player who provides technical security guidance and leadership with the design, installation, operation, service and maintenance of a variety of information systems across a multi-cloud environment. This individual understands IT Enterprise Architecture and works with the enterprise architects to ensure that security standards are created and implemented into JetBlue’s Enterprise Architecture frameworks. This role identifies security gaps, develops controls, determines functional and non-functional security requirements and designs solutions that meet business objectives while complying with security standards to achieve Security-by-Design principles.
Responsibilities
- Leads the development of a strategic cloud security architecture vision, including standards and frameworks.
- Create security strategies to improve controls and architecture for critical security infrastructure including endpoints, mobile devices, authentication and authorization, logging, and threat detection.
- Provide subject matter expertise on system, application, database and network security.
- Security harden Azure, GCP, AWS Identity as a Service (IaaS) and Platform as a Service (PaaS) infrastructure.
- Assist DevOps teams with pipeline deployments.
- Enabling and facilitating Proof of Concepts.
- Maintain a deep technical knowledge of Microsoft data center technologies, including Active Directory, Office 365, Azure, and Windows Servers.
- Work with the appropriate teams to respond to incidents and to take charge when needed.
- Migrate on-premises workloads to the cloud.
- Proactively adopt new cloud infrastructure and technologies.
- Certificate Management.
- Share your knowledge and expertise with junior team members, fostering a collaborative and learning-oriented environment.
- Participates in Project Management activities and the enterprise architecture reviews to drive overall technology direction for JetBlue.
- Other duties as assigned.
Job Requirements
Minimum Experience and Qualifications
- Bachelor’s degree in IT, Computer Science, or a related field; OR demonstrated capability to perform job responsibilities with a combination of a High School Diploma/GED and at least four (4) years of previous related work experience
- Four (4) years of Identity and Access Management, with a solid grasp of concepts like authentication, authorization, multi-factor authentication, and federation
- Four (4) of years information security experience
- Three (3) years or more experience with architecting solutions involving one or more cloud service providers Microsoft Azure, AWS, etc.
- Must be able to work in a team environment as a productive and cordial team player
- Must be able to multi-task and prioritize in a fast-paced multi-team environment
- Ability to present to a variety of audiences
- Ability to work to deadlines with quick turnaround
- Ability to handle confidential information with professionalism and diplomacy
- Available for overnight travel (10%)
- Must pass a pre-employment drug test
- Must be legally eligible to work in the country in which the position is located
- Authorization to work in the US is required. This position is not eligible for visa sponsorship
Preferred Experience and Qualifications
- Certified Information Systems Security Professional (CISSP) certified (or equivalent), Cloud competency certifications to supplement experience
- Hands-on expertise operating in an AWS or Azure environment, including architecture and security capabilities in the cloud
- Knowledge of web application security, browser security models, and application security vulnerabilities such as the OWASP Top Ten
- Deep understanding of network attacks, DDoS, Phishing, email protocols/security/spam, encryption, authentication, logging and log analysis, IP and device reputation, and security rules and policies
- High degree of skill and knowledge in managing and participating in incident response, Intrusion Prevention Systems, Intrusion Detection Systems, SEIM, Endpoint security solutions
- Any experience in building business applications for the aviation industry
- A strong working knowledge of current IT risks, security implementations, and computer operating and software programs
- Knowledge of network applications and services – expertise in the purpose of the application or service, common usage, secure configurations, and threats or attacks against the application or service, as well as mitigation strategies
- Any experience in building business applications for the aviation industry
- Strong leadership, project and team-building skills, including the ability to lead teams and drive projects and initiatives in multiple departments
- Excellent teaching, problem-solving, communication, and interpersonal skills
Crewmember Expectations:
- Regular attendance and punctuality
- Potential need to work flexible hours and be available to respond on short-notice.
- Able to maintain a professional appearance.
- When working or traveling on JetBlue flights, and if time permits, all capable crewmembers are asked to assist with light cleaning of the aircraft.
- Must be an appropriate organizational fit for the JetBlue culture, that is, exhibit the JetBlue values of Safety, Caring, Integrity, Passion and Fun
- Promote JetBlue’s #1 value of safety as a Safety Ambassador, supporting JetBlue’s Safety Management System (SMS) components, Safety Policy and behavioral standards.
- Identify safety and/or security concerns, issues, incidents or hazards that should be reported and report them whenever possible and by any means necessary including JetBlue’s confidential reporting systems (Aviation Safety Action Program (ASAP) or Safety Action Report (SAR))
Equipment:
- Computer and other office equipment
Work Environment:
- Traditional office environment
Physical Effort:
- Generally not required, or up to 10 pounds occasionally, 0 pounds frequently. (Sedentary)
Compensation:
- The base pay range for this position is between $105,600.00 and $150,400.00 per year. Base pay is one component of JetBlue’s total compensation package, which may also include access to healthcare benefits, a 401(k) plan and company match, crewmember stock purchase plan, short-term and long-term disability coverage, basic life insurance, free space available travel on JetBlue, and more.