Director Information Security Engineering and Architecture

Overview

This position is responsible for providing strategic leadership and technical vision in developing and maintaining Atlas Air’s information security architecture, infrastructure, and engineering initiatives. A highly visible role interfacing with multiple internal and external teams, this role combines strategic planning and technical expertise to drive the evolution of the company’s cybersecurity program.

Responsibilities

• Leads a team of highly experienced individual contributors and technical managers including hiring, career development and performance reviews with a focus on enhancing leadership effectiveness
• Leads technical leaders including hiring, mentorship, career development, and performance reviews with a focus on enhancing leadership effectiveness
• Provides leadership, mentoring and coaching for all staff and fosters a culture of accountability, innovation and team building
• Forms part of the Extended Technology Leadership team and works collaboratively across the group
• Establishes and maintains security architecture principles, standard, and patterns that enable secure-by-design practices across the enterprise
• Provides leadership and influences cybersecurity strategy across the product portfolio
• Provides a holistic focus across infrastructure, application security, vulnerability management and third-party partnerships and dependencies
• Drives the technical vision and roadmap for information security solutions across cloud and on-premise environments
• Oversees the Aircraft Cybersecurity program
• Partners with enterprise infrastructure, development teams, and business stakeholders to integrate security requirements into technology initiatives
• Develops partnerships aimed at improving product security practices and reducing cost
• Evaluates emerging security technologies and trends and recommends solutions to advance the company security posture
• Manages the Information Security operational and capital budgets including forecasting and reporting of fiscal performance for domain of responsibility. Ensures that the proper investments are made with regards to a multi-year view but is adaptable in a rapidly changing environment
• Manage relationships with key security vendors, partners, and regulators
• Evolves architectural design through awareness of existing ecosystem and pain points (performance, financial, scalability) to deliver a positive impact
• Translates business needs into Architectural requirements and estimate the financial impact of alternatives
• Develops and implements training and succession plans to develop internal staff and expand technical and leadership capacity within the team
• Performs other duties as assigned

Qualifications

• Bachelor’s degree or relevant work experience required.
• 10+ years of progressive experience in information security, with at least 5 years in an architecture or engineering role
• 7+ years in a team lead, manager or similar leadership role in cybersecurity or app security.
• Demonstrated technical prowess, along with proven experience leading high-performing cybersecurity teams
• Proven track record of leading and delivering complex security initiatives
• Experience with security major cloud platforms (AWS, Azure, GCP)
• Proficient in application security, APIs, vulnerability management, threat modeling and risk management
• Well-versed with application security tools, public cloud providers, CI/CD platforms and container services
• Successful track record of hiring and retaining cybersecurity professionals and multi-team collaboration
• Able to direct teams and be actively aware of workload, timelines and obligations without micromanaging
• Experience managing an annual cybersecurity budget with expenses for internally developed, commercial and third-party tools
• Exemplary communication and leadership skills
• Must be able to translate technical security concepts into lay terms
• Must be comfortable presenting in front of technical and non-technical audiences
• Experience in aircraft cybersecurity desired but not required
• Understanding of NIST standards for Information Security strongly desired
• One or more of CISSP, GCSA, CSSLP, SABSA or similar security certifications desired but not required

Salary Range: $185,500 - $250,500 

#GHSalarySalary Range: $185,500 - $250,500  Range: $185,500 - $250,500 19  #LI-Hybrid #LI-20

Financial offer within the stated range will be based on multiple factors to include but not limited to location, relevant experience/level and skillset.

The Company is an Equal Opportunity Employer. It is our policy to afford equal employment opportunity to all employees and applicants for employment without regard to race, color, religion, sex, sexual orientation, national origin, citizenship, place of birth, age, disability, protected veteran status, gender identity or any other characteristic or status protected by applicable in accordance with federal, state and local laws.

If you'd like more information about your EEO rights as an applicant under the law, please download the available EEO is the Law document at http://www1.eeoc.gov/employers/poster.cfm.

To view our Pay Transparency Statement, please click here: Pay Transparency Statement

“Know Your Rights: Workplace Discrimination is Illegal” Poster

The "EEO Is The Law" Poster

“Know Your Rights: Workplace Discrimination is Illegal” Poster | U.S. Equal Employment Opportunity Commission

The "EEO Is The Law" Poster