United Airlines Senior Manager - Identity & Access Management in Chicago, Illinois

We have a wide variety of career opportunities around the world — come find yours.

Information Technology

The United IT team designs, develops and maintains massively scaling technology solutions that are brought to life with innovative architectures, data analytics and digital solutions.

Job overview and responsibilities

The Sr. Manager of Identity and Access Management has primary responsibility for the management and operation of United’s Identity Management systems and tools. This position will provide a successful level of service to business partners and customers while adhering to web security and risk policies and standards throughout the enterprise.

  • Manage the Identity Management Governance team and products while creating/enforcing create framework and enforce lifecycle management.

  • Manage and evaluate the effectiveness of the enterprise's Identity Management Solutions and Services to ensure they provide the intended level of protection. Evaluate risk level and provide guidance.

  • Interface with external organizations (e.g., Legal, Compliance, Communication, Risk, HR, Finance, Operations) to ensure appropriate and accurate design and services are complete and successful

  • Interpret patterns of non-compliance to determine their impact on levels of risk and/or overall effectiveness of the policy and standards created for the enterprise Identity Lifcycle Management tools and services

  • Support necessary compliance, threat, or investigative activities

  • Define and/or implement policies and procedures to ensure protection of assets and infrastructure (as appropriate)

  • Acquire and manage the necessary resources, including leadership support, financial resources, and key security personnel, to support information technology (IT) security goals and objectives and reduce overall organizational risk

  • Collaborate with organizational managers to support organizational objectives

  • Evaluate cost-benefit, economic, and risk analysis in decision-making process

  • Assure successful implementation and functionality of security requirements and appropriate information technology (IT) policies and procedures that are consistent with the organization's mission and goals

Required

  • Any combination of equivalent education, work experience, and formal training that allows the candidate to meet the requirements of the job is satisfactory

  • Knowledge of information security program management and Project Management principles and techniques

  • Knowledge of resource management principles and techniques

  • Knowledge of enterprise incident response program, roles, and responsibilities

  • Knowledge of Identity Management and Web Security technologies

  • Knowledge of network security architecture concepts, including topology, protocols, components, and principles (e.g., application of defense-in-depth)

  • Knowledge of host/network access controls (e.g., access control list)

  • Knowledge of basic system administration, network, and operating system hardening techniques

  • Knowledge of middle ware topology, Directory Services engineering and LDAP identity store

  • Knowledge of new and emerging information technology (IT) and information security technologies as well as threats/threat vectors

  • Knowledge of what constitutes a network attack and the relationship to both threats and vulnerabilities

  • Knowledge of technology integration processes

  • 5 years operations support experience within a large scale enterprise

  • Must be legally authorized to work in the United States for any employer without sponsorship

  • Successful completion of interview required to meet job qualification

  • Reliable, punctual attendance is an essential function of the position

Preferred

  • BS, or MS degree in a technology related field

  • Knowledge of system software and organizational design standards, policies, and authorized approaches (e.g., International Organization for Standardization [ISO], National Institute of Standards and Technology [NIST]) relating to system design

  • Knowledge of risk management processes, including steps and methods for assessing risk

  • Knowledge of Personally Identifiable Information (PII) and Payment Card Industry (PCI) data security standards

  • 10 years overall IT experience

Equal Opportunity Employer – Minorities/Women/Veterans/Disabled/LGBT

Division: 47 Technology/IT

Function: Information Technology

Equal Opportunity Employer – Minorities/Women/Veterans/Disabled