Responsible for the annual Information Security Policy and Standard lifecycle including creation and updates
Responsible for strategic direction, thought leadership to safeguard system integrity and protect information from accidental or unauthorized modification or disclosure
Researches and creates documented security architecture patterns mirroring best practices that support the functional and non-functional business requirements for proposed systems
Ensures modern trends in security (threats, technologies) are considered in developing security architecture requirements and recommendations
Advances the enterprise security architecture practice, security policies and security standards to enhance operational practices
Consults with project teams ensuring the system development lifecycle incorporates Hawaiian Airlines security standards and policy
7+ years of information security experience
4+ years of full-time experience in network/application/database security architecture for large enterprise systems with PII/PCI related data flows
Prefer Certified Information Systems Security Professional-Information Systems Security Architecture Professional (CISSP-ISSAP) certification
Experience conducting and applying threat modeling to large virtualized architectures
Experience implementing application and infrastructure security architecture best practices
Proven teamwork skills and the ability to communicate with colleagues, customers and various levels within the organization
Demonstrated experience leading programs from requirements through implementation
Demonstrated competency in strategic thinking and strong relationship management skills
Working knowledge of architectural frameworks and methodologies
Demonstrated knowledge of risk assessment procedures, policy formation
Broad knowledge of software development lifecycles and ideally, experience working in an Agile environment
Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities.
Please view Equal Employment Opportunity Posters provided by OFCCP here.
The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information.