Department:
TechnologyOur Company Promise
We are committed to provide our Employees a stable work environment with equal opportunity for learning and personal growth. Creativity and innovation are encouraged for improving the effectiveness of Southwest Airlines. Above all, Employees will be provided the same concern, respect, and caring attitude within the organization that they are expected to share externally with every Southwest Customer.
Job Description:
Job Summary
All of Southwests People come together to deliver on our Purpose; Connecting People to whats important in their lives through friendly, reliable, and low-cost air travel. The Cybersecurity Analyst delivers on our Purpose by joining the Cybersecurity Vulnerability Management Team, responsible for active security monitoring, analysis, and response, as well as the continuous improvement of cybersecurity policies and procedures. This role actively shapes the organization&39;s cybersecurity posture and provides valuable insights into the security of digital assets while fostering awareness, compliance, and a strong security culture while advancing the organization&39;s cybersecurity defenses and ensuring compliance across diverse domains. The Cybersecurity Analyst is a strong communicator who is excited to join this growing and innovative Team, where theyll support our People and have the opportunity to learn and grow in their expertise each day.
This role is offered as a remote workplace position, which may require travel for training, meetings, conferences, etc. Outside of those required visits, the majority of your working time may be spent in a remote location, away from our Corporate Campus. Please note, while this is a remote position, there is a limited group of states or localities ineligible for Employees to regularly perform their work. Those ineligible locations are: Alaska, California, Colorado, Delaware, Illinois, Iowa, Maryland, Massachusetts, Montana, New Hampshire, New Jersey, New York, North Dakota, Oregon, Pennsylvania, South Dakota, Vermont, West Virginia, Washington and Wyoming
U.S. citizenship or current authorization to work in the U.S. required and no current or future work authorization sponsorship available.
Southwest Airlines is an Equal Opportunity Employer. We continue to look for opportunities to reflect the communities we serve, and welcome applicants with diverse thoughts, backgrounds, and experiences.
Responsibilities
Demonstrate advanced analytical skills across diverse cybersecurity domains, leading the identification and resolution of complex cybersecurity issues in areas such as Incident Response, Threat Intelligence, Governance, Risk, and Compliance (GRC), Privacy, Vulnerability Management, and Engineering Operations
Lead and actively participate in high-priority incident response efforts, taking ownership of critical activities related to the identification, containment, and resolution of security incidents, and providing mentorship to junior analysts
Drive advanced threat intelligence initiatives, including the development of threat hunting strategies, proactive identification of emerging threats, and the implementation of innovative solutions to enhance the organization&39;s security posture
Take a lead role in vulnerability management, overseeing and improving the vulnerability assessments and scanning processes, and providing mentorship to junior and mid-level analysts
Architect and lead the optimization of the organization&39;s security infrastructure, overseeing the implementation of advanced cybersecurity controls, and ensuring the organization is prepared to address evolving cyber threats
Lead privacy initiatives, overseeing the implementation and enforcement of privacy controls and practices, and ensuring the protection of sensitive information in compliance with relevant regulations
Drive the continual improvement of cybersecurity practices and resilience, staying at the forefront of industry trends and emerging technologies to shape and enhance the organizations advanced security posture
Lead the development and execution of comprehensive cybersecurity training and awareness initiatives, tailoring programs to different audiences and providing mentorship to junior team members
Play a key role in fostering collaboration across the organization, engaging with senior leadership, cross-functional teams, and external stakeholders, and representing the cybersecurity function at a strategic level
May perform other job duties as directed by Employee&39;s Leaders
Knowledge, Skills and Abilities
Knowledge of various cybersecurity frameworks and standards (e.g., NIST, ISO 27001) to guide security initiatives
Knowledge of data protection and privacy regulations (e.g., GDPR, CCPA) to ensure the safeguarding of sensitive information
Knowledge of incident response procedures and methodologies for effective response to security incidents
Skilled in conducting risk assessments and developing risk mitigation strategies
Skilled in using security monitoring tools, SIEM systems, and intrusion detection systems for threat detection and analysis
Skilled in written and verbal communication skills for reporting and conveying technical information to non-technical stakeholders
Ability to proactively identify and assess risks, and implement mitigation strategies to protect the organization&39;s assets
Ability to monitor program risks, issues, and scope related to cybersecurity initiatives with the appropriate level of priority and escalation
Skilled in collaborating with cross-functional teams and stakeholders to drive cybersecurity initiatives and risk management
Ability to adapt to evolving threats, technologies, and best practices in the dynamic field of cybersecurity
Education
Required: High School Diploma or GED
Required: Bachelor&39;s degree in Business, Engineering, Computer Science, or Information Systems, or related field; or equivalent formal training
Experience
Required: Intermediate-level experience, fully functioning broad knowledge in cybersecurity principles and concepts, developing skills and knowledge in information technology (IT) operations, programming, systems/software development or another IT related field
Preferred: Experience in agile and adversarial vulnerability management
Preferred: Experience in Vulnerability Testing Tools (nmap, Nessus, Qualys, Rapid7 insightVM, InspectorAWS, Prisma, Elastica, Metasploit framework, etc.)
Preferred: Experience in Ticketing Platforms (ServiceNow, DefectDojo, PlexTrac, ThreadFix, Remedy, etc.)
Preferred: Programming and scripting experience
Preferred: Understanding of the OWASP Top 10 and SANS Top 20
Preferred: Experience and knowledge of network device configuration including Cisco Switches, Routers and Firewalls, PaloAlto Firewalls, Juniper Firewalls and Routers, A10 and F5 Load balancers
Preferred: Knowledge of Threat Modeling and Threat Intelligence Tools (Bitsight, RiskIQ, SecurityScorecard, RecordedFuture, CrowdStrike, RiskRecon, Trellix, etc.)
Physical Abilities
Ability to perform work duties from [limited space work station/desk/office area] for extended periods of time
Ability to communicate and interact with others in the English language to meet the demands of the job
Ability to use a computer and other office productivity tools with sufficient speed and accuracy to meet the demands of the job
Other Qualifications
Must maintain a well-groomed appearance per Company appearance standards as described in established guidelines
Must be a U.S. citizen or have authorization to work in the United States as defined by the Immigration Reform Act of 1986
Must be at least 18 years of age
Must be able to comply with Company attendance standards as described in established guidelines
Limited travel with potential for increased/decreased travel based upon Technology Department needs
Pay & Benefits
Competitive market salary from $102,500 per year to $113,900 per year* depending on qualifications and experience. For eligible Leadership and individual contributor roles, additional bonus opportunities are available and awarded at the discretion of the company.
Benefits youll love:
Fly for free, as a privilege, on any open seat on all Southwest flights (your eligible dependents too)
Southwest will help fund your 401(k) retirement savings with Company contributions up to 9.3 of your eligible earnings**
Potential for annual ProfitSharing contribution in the Southwest Retirement Savings Plan- when Southwest profits, you profit***
Competitive health insurance for you and your eligible dependents (including pets)
Southwest offers health plan coverage options that start from the very first day of employment. You will have 30 days to select and enroll in your health plan with coverage retroactively available to your first day of employment.
Explore more Benefits youll love: https://careers.southwestair.com/benefits
*Pay amount does not guarantee employment for any particular period of time.
**401(k) match contributions are subject to Retirement Savings Plan vesting schedule and applicable IRS limits
***ProfitSharing contributions are subject to Retirement Savings Plan vesting schedule and are made at the discretion of the Company.
Southwest Airlines is an Equal Opportunity Employer.
Please print/save this job description because it won&39;t be available after you apply.
Job Posting End Date
07/10/2024