Share this Job
Apply now »

Engineer/Senior Engineer, IT Platform Security

Engineer/Senior Engineer, IT Platform Security

Date:  Jan 10, 2021

Location: DFW Headquarters Building 8 (DFW-SV08) 
Additional Locations: None; Phoenix, AZ
Requisition ID: 39142 


Are you ready to explore a world of possibilities, both at work and during your time off? Join our American Airlines family, and you’ll travel the world, grow your expertise and become the best version of you. As you embark on a new journey, you’ll tackle challenges with flexibility and grace, learning new skills and advancing your career while having the time of your life. Feel free to enrich both your personal and work life and hop on board!

Why you'll love this job
  • This job is a member of the Information Security Team, within the Security Platforms Division. The Web Application Security team collaborates with application owners, architects, and developers in order to integrate security tools such as WAF to protect American Airlines websites and mobile apps.  This team also collaborates with corporate security fraud teams, privacy teams, and incident response teams in investigations related to websites. 
  • This individual is responsible for the analysis, design, implementation, and maintenance of the automation tasks for our product.  This individual is also responsible for collaborating with application owners and security vendors to update/tune Web Application Firewall (WAF) and bot mitigation security policies.
What you'll do
  • Collaborates with leaders, business analysts, project managers, IT architects, technical leads and other developers, along with internal customers, to understand requirements and develop needs according to business requirements
  • Monitors performance and capability of systems and provides recommendations based on the current threat landscape
  • Maintains centrally managed consoles and critical infrastructure that enables our teams to manage third party security technologies
  • Develops and maintains automating day to day tasks with enterprise infrastructure
  • Collaborates with Product Management in order to align with established roadmaps
  • Fosters and cultivates vendor relationships and grasps vendor roadmaps and release schedules
  • Works in and actively supports an Agile and DevSecOps environment
  • Researches, evaluates, and implements new technologies and product lines, in order to enhance current processes, security, and performance
  • Provides innovative solutions to continue the enhancement and proficiency of our systems
  • Participates in an on-call rotation for any escalations outside business hours, and top tier escalation support for Operations based teams
  • Oversees and supports releases during the evening
  • Travels occasionally, as needed
All you'll need for success

Minimum Qualifications- Education & Prior Job Experience

  • Bachelor’s degree in Computer Science, Computer Engineering, Technology, Information Systems (CIS/MIS), Engineering or related technical discipline, or equivalent experience/training
  • 3 years of technology experience, with a focus on information security technology development and administration, web app development, or web application pen testing
  • Strong technical background with Akamai Web Application Firewall (WAF) and bot mitigation security policies
  • Experience working with Akamai performance and security tools
  • Strong technical background in Web Application Development or Web App Pen Testing (GWAPT)
  • Solid comprehension of HTTP protocol and demonstrated ability to troubleshoot using HTTP logs and Splunk or other analytics tools
  • Basic understanding of DNS, Networks, Firewalls, SSL Certificates
  • Extensive experience with automation scripting
  • Strong technical background in scripting languages (Python, PowerShell, or JavaScript)
  • Knowledge and experience in DevOps/DevSecOps techniques like CI/CD (Jenkins preferred)
  • Experience with GitHub/GIT
  • CISSP, CISM, CISA, GIAC or other security certifications are desired
  • Working understanding of Agile Framework
  • Self-motivated learning, good attitude

Preferred Qualifications- Education & Prior Job Experience

  • Master’s degree in Computer Science, Computer Engineering, Technology, Information Systems (CIS/MIS), Engineering or related technical discipline, or equivalent experience/training
  • 5+ years of technology experience, with a focus on information security technology development and administration, web app development, or web application pen testing
  • Ability to explain technical concepts and adjust messaging based on the audience, including non-technical groups
  • Ability to influence through outstanding interpersonal skills, collaboration, and negotiation skills
  • Ability to work well within a team environment, as well as independently
Skills, Licenses & Certifications


  • Information Security Certification
    • Security+
    • CISSP
  • Ability to script in languages like Python or JavaScript
  • Knowledge of Linux/Unix, Powershell, Basic Windows Administration, Git
  • Knowledge of Security Concepts, Mitre ATT&CK Framework, PCI Compliance Requirements
  • Knowledge of Networking concepts, services, and protocols
  • Knowledge of basic cloud security controls and architecture
  • Knowledge of SIEM, EDR, SOAR Platforms, Big Data Platforms
  • Experience with Agile methodologies and tools
  • A solid understanding of networking, cyber security concepts, vulnerability identification and cyber threat intelligence
  • Must be detail oriented, well organized, thrive in a sense-of-urgency environment, leverage best practices, and most importantly, innovate through any problem with a can-do attitude
  • Aptitude in solving problems independently while also having the openness to work collaboratively
  • Demonstrated problem-solving skills
  • Availability to work a flexible schedule and support the incident response teams during triage
  • Ability to lead a small squad of engineers to deliver sustainable, scalable, and staff tolerant enterprise services
What you'll get

Feel free to take advantage of all that American Airlines has to offer: 

  • Travel Perks: Ready to explore the world? You, your family and your friends can reach 365 destinations on more than 6,800 daily flights across our global network.
  • Health Benefits: On day one, you’ll have access to your health, dental, prescription and vision benefits to help you stay well. And that’s just the start, we also offer virtual doctor visits, flexible spending accounts and more. 
  • Wellness Programs: We want you to be the best version of yourself – that’s why our wellness programs provide you with all the right tools, resources and support you need.
  • 401(k) Program: Available upon hire and, depending on the workgroup, employer contributions to your 401(k) program are available after one year.
  • Additional Benefits: Other great benefits include our Employee Assistance Program, pet insurance and discounts on hotels, cars, cruises and more
Feel Free to be yourself at American

From the team members we hire to the customers we serve, inclusion and diversity are the foundation of the dynamic workforce at American Airlines. Our 20+ Employee Business Resource Groups are focused on connecting our team members to our customers, suppliers, communities and shareholders, helping team members reach their full potential and creating an inclusive work environment to meet and exceed the needs of our diverse world.

Are you ready to feel a tremendous sense of pride and satisfaction as you do your part to keep the largest airline in the world running smoothly as we care for people on life’s journey? Feel free to be yourself at American.

Additional Locations: None; Phoenix, AZ
Requisition ID: 39142 

Nearest Major Market: Fort Worth
Nearest Secondary Market: Dallas

Job Segment: Engineer, Information Systems, Computer Science, Linux, Unix, Engineering, Technology

Apply now »