United Airlines Senior Manager - Vulnerability Management in Chicago, Illinois

We have a wide variety of career opportunities around the world — come find yours.

Information Technology

The United IT team designs, develops and maintains massively scaling technology solutions that are brought to life with innovative architectures, data analytics and digital solutions.

Job overview and responsibilities

The Senior Manager - Vulnerability Management is responsible for the scanning process for vulnerabilities within company applications and computer systems and for ensuring these vulnerabilities are tracked and managed. This person will lead the Vulnerability Management scanning program and provide leadership to the security professionals in these areas. They are a key component of the cyber security posture of the company and they work to keep leadership advised of current vulnerabilities, as well as track and advocate for vulnerability remediation. They will lead the company through critical efforts and serve as a partner to the teams remediating identified vulnerabilities.

  • Provide vision, strategy, project management, and innovation for the vulnerability management functions at United, expanding the capabilities of the company year over year

  • Manage a team of vulnerability management and scanning professionals ensuring regular scanning and review of assets and applications to identify network, infrastructure, and configuration vulnerabilities

  • Engage with leadership throughout IT and business owner organizations to continuously enhance and communicate the importance of vulnerability remediation from a technical perspective

  • Determine a method or system for consistent tracking and review of open vulnerabilities

  • Build and develop the overall vulnerability management team to handle identifying vulnerabilities, manage metrics, and support their remediation to better protect the United network

Required

  • A computer-science or cyber security related BS or BA degree, or any combination of equivalent education, work experience, and formal training that allows the candidate to meet the requirements of the position

  • Experience in expanding vulnerability scanning infrastructure

  • Knowledge of network infrastructure technology

  • Understanding of complex process flows and decision matrices

  • Technical knowledge of infrastructure and network vulnerabilities

  • Good understanding of Information Security standards, frameworks, and best practices

  • People management and leadership skills

  • Effective Program Management skills

  • Expertise in relationship building with partners

  • Exemplary interpersonal communications (both written and verbal) skills

  • Ability to lead by example and influence change

  • 5+ years working with IT infrastructure and development teams

  • Experience with vulnerability scanning tools, such as Qualys, Nessus, Rapid7, etc.

  • At least two years of experience as a people manager and team leader

  • At least two years of experience with vulnerability management and remediation

  • Experience in building or developing a vulnerability management program

  • Must be legally authorized to work in the United States for any employer without sponsorship

  • Successful completion of interview required to meet job qualification

  • Reliable, punctual attendance is an essential function of the position

Preferred

  • CISSP and/or relevant SANS certifications

Equal Opportunity Employer – Minorities/Women/Veterans/Disabled/LGBT

Division: 47 Technology/IT

Function: Information Technology

Equal Opportunity Employer – Minorities/Women/Veterans/Disabled