Tech Lead Cybersecurity Engineer - Integration and Frameworks

Department:

Technology

Our Company Promise

We are committed to provide our Employees a stable work environment with equal opportunity for learning and personal growth. Creativity and innovation are encouraged for improving the effectiveness of Southwest Airlines. Above all, Employees will be provided the same concern, respect, and caring attitude within the organization that they are expected to share externally with every Southwest Customer.

:

The People of Southwest Airlines come together to deliver on our Purpose, which is to connect People to what's important in their lives through friendly, reliable, and low-cost air travel. This Technology Lead Cybersecurity Engineer invests in the future of Southwest though their work on the Cybersecurity Integration and Frameworks Team, which is responsible for the integration of products such as the PCI tokenization system used for securing credit cards and authorization libraries used by Southwest applications. This role and Team adhere to Agile principles while they create and refresh AWS solutions and utilize a maturing common platform. The Tech Lead Cybersecurity Engineer is excited to join this innovative Team, where they'll focus on both Enterprise integration and platform development to drive the future of Cybersecurity at Southwest Airlines.

Additional details:

• 
  

  This role is offered as a remote workplace position, which may require travel for trainings, meetings, conferences, etc. Outside of those required visits, the majority of your working time may be spent in a remote location, away from our Corporate Campus. Please note, while this is a remote position, there is limited group of states or localities ineligible for Employees to regularly perform their work off-site. Those ineligible locations are: Alaska, Delaware, New Jersey, North Dakota, South Dakota, Vermont, West Virginia, and Wyoming.

  
  


• 
  

  U.S. citizenship or current authorization to work in the U.S. is required, and no current or future work authorization sponsorship available.

  
  

Southwest Airlines is an Equal Opportunity Employer. We continue to look for opportunities to reflect the communities we serve, and welcome applicants with diverse thoughts, backgrounds, and experiences.

• 
  

  Responsibilities

  
  


• 
  

  Translation of general application security requirements such as authentication, authorization, data protection into specific technical requirements for implementing software library and service products for specific security protocols such OAuth2, OIDC, SAML, PKI, KEK/DEK encryption, etc.

  
  


• 
  

  Ability to develop long term roadmaps to deliver core Cybersecurity capabilities in the form of libraries, services, and automation.

  
  


• 
  

  Ability to lead a team of 5 - 7 software engineers, establishing a quality SDLC (Software Development Life Cycle) process and ensuring the team adheres to the process and defined standards.

  
  


• 
  

  Ability to translate high-level, large-scale system architecture, into detailed design activities and mentor software engineers in growing their software design skills.

  
  


• 
  

  Deliver training for clients in use of the key Cybersecurity systems, and automated environments.

  
  


• 
  

  Identify Cybersecurity problems, plan solutions, recommend software and systems, and coordinate developments in an orderly manner to meet business requirements.

  
  


• 
  

  Act as an agent for change to reflect the latest Cybersecurity standards and practices.

  
  


• 
  

  Serves as an enterprise subject matter expert (SME) and advocate of IT Security standards and reference architectures.

  
  


• 
  

  Act as a Mentor to both Co-Hearts on responding to production program issues and coaches on resolutions in Cybersecurity and Partner Teams

  
  


• 
  

  Lead testing and implement system enhancements using techniques that preserve system integrity and drives a results-oriented environment.

  
  


• 
  

  Provide security guidance to application and Partner Teams to remediate security vulnerabilities, risk items, and policy exceptions.

  
  


• 
  

  Develop, test and operate end-to-end software solutions using machine learning, related optimization, and knowledge systems.

  
  


• 
  

  Ensure that systems are functionally appropriate, technically sound, and well-integrated.

  
  


• 
  

  May perform other job duties as directed by Employee's Leaders

  
  


• 
  

  Knowledge, Skills and Abilities

  
  


• 
  

  Knowledge of existing elements in value pipeline, including: PingFederate, eDirectory, Active Directory, CyberArk, and Micro Focus IDM

  
  


• 
  

  Skilled in cloud computing technology and its concepts (AWS)

  
  


• 
  

  Skilled in infrastructure-as-code (IaC) development (Terraform, CloudFormation or similar) and automated configuration management using configuration-as-code (CaC) development (Chef, Puppet, Ansible or similar)

  
  


• 
  

  Skilled in implementing Cybersecurity specific Integration Tests for integrations providing Identity, Security Policy, and Cryptography utilizing tools such as Terragrunt and Gradle

  
  


• 
  

  Skilled in performance, logging and monitoring tools such as Prometheus, ELK Stack, AppD and their integration into platform tools such as AWS CloudWatch

  
  


• 
  

  Skilled in credential management tools and solutions like AWS Secrets Manager, CyberArk or Hashicorp Vault

  
  


• 
  

  Skilled in creating parameterized build jobs via GitLab or Jenkins for Continuous Integration of Security and environmental variables.

  
  


• 
  

  Knowledge of architectural principles, design patterns and common methodologies across a variety of technologies

  
  


• 
  

  Ability to mentor and guide technical resources, with a focus on growth of the technical bench.

  
  


• 
  

  Preferred: Skilled in Palo Alto (Panorama, Global Protect, Prisma, Firewall, Route / Switch)

  
  


• 
  

  Preferred: Skilled in infrastructure as code (Terraform, Ansible, etc.)

  
  


• 
  

  Education

  
  


• 
  

  Required: High School Diploma or GED

  
  


• 
  

  Bachelor's Degree in Business, Engineering, Computer Science, Information Systems, Cybersecurity, or related field; or equivalent formal training

  
  


• 
  

  Experience

  
  


• 
  

  Required: Expert-level experience, expansive and far-reaching knowledge in developing, implementing, or integrating technologies for Enterprise security

  
  


• 
  

  Preferred: Multiple years of software engineering experience with Java, JavaScript, Python, Go, and Lua.

  
  


• 
  

  Preferred: Familiarity with identity federation protocols - OAuth2, OIDC, SAML.

  
  


• 
  

  Preferred: Familiarity with RBAC (Role Based Access Control) and ABAC (Attribute Based Access Control).

  
  


• 
  

  Preferred: AWS services, in particular, security related services such as AWS Secrets Manager, AWS Certificate Manager, AWS Identity and Access Management, AWS Key Management Service, and AWS API Gateway Lambda Authorizer.

  
  


• 
  

  Preferred: Experience with Devops tools such as AWS CloudFormation, Terraform, Ansible, etc. Understanding of PCI DSS requirements and application of relevant technology controls to meet those requirements.

  
  


• 
  

  Licensing/Certification

  
  


• 
  

  N/A

  
  


• 
  

  Physical Abilities

  
  


• 
  

  Ability to perform work duties from [limited space work station/desk/office area] for extended periods of time

  
  


• 
  

  Ability to communicate and interact with others in the English language to meet the demands of the job

  
  


• 
  

  Ability to use a computer and other office productivity tools with sufficient speed and accuracy to meet the demands of the job

  
  


• 
  

  Other Qualifications

  
  


• 
  

  Must maintain a well-groomed appearance per Company appearance standards as described in established guidelines

  
  


• 
  

  Must be a U.S. citizen or have authorization to work in the United States as defined by the Immigration Reform Act of 1986

  
  


• 
  

  Must be at least 18 years of age

  
  


• 
  

  Must be able to comply with Company attendance standards as described in established guidelines

  
  


• 
  

  Pay & Benefits

  
  


• 
  

  Competitive market salary from $161,400 per year to $176,600 per year* depending on qualifications and experience. For eligible Leadership and individual contributor roles, additional bonus opportunities are available and awarded at the discretion of the company.

  
  


• 
  

  Benefits you'll love:

  
  


• 
  

  Fly for free, as a privilege, on any open seat on all Southwest flights (your eligible dependents too)

  
  


• 
  

  Up to a 9.3% 401(k) Company match, dollar for dollar, per paycheck *

  
  


• 
  

  Potential for annual Profit Sharing contribution toward retirement - when Southwest profits, you profit

  
  


• 
  

  Explore more Benefits you'll love: https://careers.southwestair.com/benefits

  
  


• 
  

  *Pay amount does not guarantee employment for any particular period of time.

  
  


• 
  

  401(k) match contributions are subject to the plan's vesting schedule and applicable IRS limits

  
  


• 
  

  *ProfitSharing contributions are subject to plan's vesting schedule and are made at the discretion of the Company.

  
  

Southwest Airlines is an Equal Opportunity Employer.

Please print/save this job description because it won't be available after you apply.