Join our Cybersecurity and Digital Risk (CDR) team to help us also lead the airline industry in cyber-safety. United’s CDR team is tasked with keeping our customers’ and employees’ information safe and secure. Our primary mission is to embed cybersecurity into the DNA of United Airlines by reducing business risk through implementation of strong cybersecurity standards.

Job overview and responsibilities

The Principal Engineer for Data Protection & Insider Threat will play a critical role in leading and enabling a team of analysts through the implementation of advanced technology solutions aimed at preventing, detecting, and responding to Insider Threats. This position requires a strategic thinker and thought leader who can drive the development and execution of solutions to reduce the enterprises attack surface and mitigate risks effectively. This role is ideal for a visionary technologist who is passionate about reducing cyber threats and enabling teams to achieve their mission through innovative solutions.

• Team Enablement: Collaborate with analysts to implement technology solutions that enhance Insider Threat prevention, detection, and response capabilities
• Program Development: Enable solutions that support a successful Data Loss Prevention (DLP) program and Insider Threat detection and response initiatives
• Strategic Partnership: Work closely with Data Protection and Insider Threat Sr Analysts to define and execute technology strategies for mitigating risks associated with open egress vectors
• Risk Reduction: Leverage technical expertise and interpersonal skills to influence tool and process decisions that reduce cyber threat risks and attack surfaces across the enterprise
• Roadmap Management: Partner with lead analysts to identify gaps, develop strategies, and oversee the implementation of a continually updated roadmap based on evolving attack surfaces
• Leadership & Innovation: Serve as a thought leader and strategist, guiding the team in implementing solutions that align with the mission and objectives of the organization

• Bachelors degree in STEM
• 7+ years of related experience in Information Technology
• 3+ years of experience in Cybersecurity solutions
• Strong technical background with the ability to influence technology and process decisions effectively
• Ability to develop and manage strategic roadmaps for evolving cybersecurity needs
• Familiarity with cyber threat analysis and attack surface reduction techniques
• Excellent interpersonal and leadership skills to collaborate with cross-functional teams
• Must be legally authorized to work in the United States for any employer without sponsorship
• Successful completion of interview required to meet job qualification
• Reliable, punctual attendance is an essential function of the position

• Masters degree in Information Security, Computer Information Systems, or Computer Science
• Industry certifications such as the CISSP, CISM, CISA
• 12+ years of related experience
• Expertise in Data Loss Prevention (DLP) technologies and Insider Threat detection and response solutions
• Experience presenting to executive leaders in technology roles and explaining risk to non-tech fields
• Proficiency in risk assessment and mitigation strategies, particularly for open egress vectors and excessive access permissions
• Demonstrated ability to manage and update strategic roadmaps based on changing risk landscapes
• Proven experience in data protection, insider threat management, and cybersecurity strategy

Posting Expires 7/15/2025