Alaska Airlines Principal Information Security Architect in Seattle, Washington

WHAT WE'RE ABOUT

We're creating an airline people love. It begins with each Alaska Airlines employee, bringing unique strengths and energy to our work in the air and on the ground. Every day, we go beyond what's expected and reach for the remarkable, together.

POSITION INFORMATION

Role Summary The Principal Security Architect provides and influences the long-term strategic vision for IT security, risk and compliance, and is responsible for thought-leadership in enterprise security architecture strategy & planning. This role partners across the different business divisions to provide complex solutions and align the development of core business capabilities, information assets and technology with security controls and policy. The Principal Security Architect is a seen as an industry leader, with the. ability to influence all levels, from engineers to executives.

Scope & Complexity This role will serve all of Alaska Airlines, acting as the global subject matter expert, providing enterprise-wide perspective and thought leadership to mitigate security risks and resolve critical incidents within the organization.

Key Duties

  • This position requires a strong application of interpersonal skills with the ability to foster and grow business relationships, coach and mentor other IT staff, effectively communicate at all levels of the organization, and possess a deep technical, architectural expertise in all facets of information security, including but not limited to:

  • Application Security

  • Infrastructure Security

  • Public Cloud Security

  • Compliance (e.g. PCI, SOX)

  • Identity Management

  • Provides architectural oversight of IT project activities to ensure adherence to standards and security best practices.

  • Stays abreast of industry standards, market forces and emerging technologies to understand their impact and how they can be best leveraged within the organization and technology landscape.

  • Develops a multiple-year strategy plan and drives the implementation of the security architecture standards and roadmap for Alaska Airlines.

  • Implements information security controls and patterns that support risk assessments and the development of secure architectures.

  • Integrates security requirements into technology lifecycle management and contributes to multiple large, complex application projects with cross functional teams and business users.

  • Serves as the global security expert in providing solution designs and technical consulting services in support of maintaining compliance with all applicable requirements including internal policy, the PCI DSS and relevant data privacy laws.

  • Leads Security Architects and Engineers through the research and advocacy of new technologies, architectures, and security products that will support security requirements for the enterprise and its customers, business partners and vendors.

  • Develops requirements, along with business, application development, and infrastructure partners, to drive the engineering process that produce secure solutions.

  • Be a thought leader who effectively communicates with and influences peers and leadership regarding architectural approaches that meet business requirements while managing security risk and maintaining compliance.

  • Takes full ownership for the security of the Alaska Airlines environment and be willing to dive in as a subject matter expert to resolve critical incidents in a high paced 24x7x365 environment.

  • Analyzes and recommends strategy and direction to mitigate security risks within the organization.

  • Operates as a change agent through technical leadership while driving continuous process and technology improvements.

  • Provides creative thinking and innovation with pragmatic outcomes that build constructive business relationships and gain the trust of others.

  • Mentors, coaches and trains members of the Information Security team, the broader Information Technology Services team, and other technologists throughout the organization.

  • Develops security guidance documentation.

Job-Specific Experience, Education & Skills Required

  • Bachelor's degree in computer science or related field.

  • Minimum of 10 years of experience in IT

  • Minimum of 5 years of progressive information security experience.

  • Minimum of 3 years of experience working with stakeholders across multiple functions.

  • Minimum of 3 years of experience supporting a PCI compliance program.

  • Minimum of 3 years of experience of public cloud security.

  • Minimum Age of 18 required.

  • Must be Authorized to work in the U.S.

Preferred

  • Industry certification in security (e.g. CISA, CISSP).

  • Cloud or e-commerce industry experience.

  • Prior Airline industry experience.

Job-Specific Leadership Expectations Embody our values to own safety, do the right thing, be kind-hearted, deliver performance, and be remarkable.

PAY

Exempt

EQUAL EMPLOYMENT OPPORTUNITY

Horizon Air and Alaska Airlines are equal opportunity employers. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, gender expression, national origin, age, protected veteran or disabled status, or genetic information.

Horizon Air and Alaska Airlines will consider for employment qualified applicants with arrest and conviction records in accordance with applicable Federal, State, and local laws.

Horizon Air and Alaska Airlines participate in E-Verify, a service of the Department of Homeland Security (DHS) and Social Security Administration (SSA), where required.

Job ID: 33042

Location: Seattle, WA

Full/Part Time: Full-Time

Regular/Temporary: Regular