Search for an Open Position

Share this Job

Engineer/Senior Engineer, IT Platform Security

Date: Jan 9, 2019

Location: Ft Worth, TX, US

Req ID: 24754

Location: AA Headquarters 1 (DFW-HDQ1) 
Additional Locations: None
Requisition ID: 24754 

Overview

Join us for a career with endless possibilities.

Looking for a job where a passion for innovation, a culture of teamwork, and opportunities for growth are valued and rewarded? You’ve come to the right place.

 

You don’t have to be an airline aficionado to join American Airlines. It takes more than cool planes to keep us ahead of the curve, and thanks to our team of behind the scenes professionals, we do just that. As the largest airline in the world, American Airlines is in the business of serving the global travel needs of our customers.  At the core of the Company is our commitment to each customer and each employee. We are dedicated to developing and delivering what our customers value and are willing to pay for. Customer-centric planning, innovative marketing, and an exceptional customer experience are supported by a cadre of talented people. 

 

What does it take to join us? We’re glad you asked! We expect exceptional skills in your discipline and a dedication to being the best as we relentlessly pursue our goal of being not just the largest airline in the world, but also the best airline in the world.

 

Fortunately, we’re building on almost a century of innovation and firsts in our industry – and we plan to continue that tradition of excellence.

About The Job

This job is a member of the Information Security Team, within the Security Platforms Division. The Web Application Security team collaborates with application owners, architects, and developers in order to integrate security tools such as WAF to protect American Airlines websites and mobile apps.  This team also collaborates with corporate security fraud teams, privacy teams, and incident response teams in investigations related to websites.  This individual is responsible for the analysis, design, implementation, and maintenance of the automation tasks for our product.  This individual is also responsible for collaborating with application owners and security vendors to update/tune Web Application Firewall (WAF) and bot mitigation security policies.

 

Specifically, you’ll do the following:

  • Collaborates with leaders, business analysts, project managers, IT architects, technical leads and other developers, along with internal customers, to understand requirements and develop needs according to business requirements
  • Monitors performance and capability of systems and provides recommendations based on the current threat landscape
  • Maintains centrally managed consoles and critical infrastructure that enables our teams to manage third party security technologies
  • Develops and maintains automating day to day tasks with enterprise infrastructure
  • Collaborates with Product Management in order to align with established roadmaps
  • Fosters and cultivates vendor relationships and grasps vendor roadmaps and release schedules
  • Works in and actively supports an Agile and DevSecOps environment
  • Researches, evaluates, and implements new technologies and product lines, in order to enhance current processes, security, and performance
  • Provides innovative solutions to continue the enhancement and proficiency of our systems
  • Participates in an on-call rotation for any escalations outside business hours, and top tier escalation support for Operations based teams
  • Oversees and supports releases during the evening
  • Travels occasionally, as needed

Qualifications

Required Qualifications

  • Bachelor’s degree in Computer Science, Computer Engineering, Technology, Information Systems (CIS/MIS), Engineering or related technical discipline, or equivalent experience/training
  • 3 years of technology experience, with a focus on information security technology development and administration, web app development, or web application pen testing
  • Strong technical background with Akamai Web Application Firewall (WAF) and bot mitigation security policies
  • Experience working with Akamai performance and security tools
  • Strong technical background in Web Application Development or Web App Pen Testing (GWAPT)
  • Solid comprehension of HTTP protocol and demonstrated ability to troubleshoot using HTTP logs and Splunk or other analytics tools
  • Basic understanding of DNS, Networks, Firewalls, SSL Certificates
  • Extensive experience with automation scripting
  • Strong technical background in scripting languages (Python, PowerShell, or JavaScript)
  • Knowledge and experience in DevOps/DevSecOps techniques like CI/CD (Jenkins preferred)
  • Experience with GitHub/GIT
  • CISSP, CISM, CISA, GIAC or other security certifications are desired
  • Working understanding of Agile Framework
  • Self-motivated learning, good attitude

Qualifications (Continued)

Preferred Qualifications

  • Master’s degree in Computer Science, Computer Engineering, Technology, Information Systems (CIS/MIS), Engineering or related technical discipline, or equivalent experience/training
  • 5+ years of technology experience, with a focus on information security technology development and administration, web app development, or web application pen testing
  • Ability to explain technical concepts and adjust messaging based on the audience, including non-technical groups
  • Ability to influence through outstanding interpersonal skills, collaboration, and negotiation skills
  • Ability to work well within a team environment, as well as independently

Additional Locations: None
Requisition ID: 24754 


Nearest Major Market: Fort Worth
Nearest Secondary Market: Dallas

Job Segment: Engineer, Information Systems, Computer Science, Product Manager, Senior Product Manager, Engineering, Technology, Operations