Principal Architect - Application Cybersecurity (Remote) Job at United Airlines

Principal Architect – Application Cybersecurity (Remote)

Join to apply for the Principal Architect – Application Cybersecurity (Remote) role at United Airlines.

Achieving our goals starts with supporting yours. Grow your career, access top‑tier health and wellness benefits, build lasting connections with our team, and travel the world using our extensive route network.

Come join us to create what’s next. Let’s define tomorrow, together.

Description

Connecting People. Uniting the World. There’s never been a more exciting time to join United Airlines! As a global company that operates in hundreds of locations around the world, with millions of customers and tens of thousands of employees, we have a unique responsibility to uplift and provide opportunities in the places where we work, live, and fly.

We’re on a path to becoming the best airline in aviation history. Join our Cybersecurity and Digital Risk (CDR) team to help lead the industry in cyber safety, security and resilience. United's CDR team plays a critical role in protecting our operations by enabling secure and resilient systems, managing threats and vulnerabilities, and ensuring swift response and recovery. Our mission is to seamlessly embed cybersecurity and digital risk management into every aspect of our business. We help drive progress and growth through trusted digital solutions, safeguarding assets and empowering our team, all while promoting a cyber‑safe and secure environment that supports resilient airline operations.

United offers a competitive benefits package aimed at ensuring you’re happy, healthy, and well‑traveled. From employee‑run "Business Resource Group" communities to world‑class benefits such as parental leave, 401(k), and flight privileges, United is truly one‑of‑a‑kind.

Ready to travel the world and help us keep our airline cyber safe? Apply today!

Job Overview and Responsibilities

The Principal Architect – Application Cybersecurity validates that our services, applications, and websites are designed and implemented in accordance with United’s secure development standards. The Principal Architect is a senior‑level position that works closely with security engineers, development teams, product teams, and other teams across the organization to design and develop security solutions, improve operational efficiency, and enhance application security.

Key responsibilities include:

• Leads architecture design and development of United compliance automation system that eliminates manual effort for security assessment and compliance measurements
• Analyzes security requirements and controls, developing automated solutions to facilitate security reviews, compliance validation, and security operations
• Recommends and implements products/services that support operational needs and security requirements
• Serves as technical point of contact for product teams regarding automation, CI/CD, and remediation guidance
• Assists in the design, development, and implementation of security tools, best practices and standards, ensuring product development teams understand them
• Promotes and contributes to the continuous improvement of security strategy and supports risk prioritization
• Supports training and mentorship of team members
• Leads the improvement of security accessibility through automation and continuous integration pipelines
• Educates and mentors junior team members
• Ensures the program(s) meet intended purpose and metrics

Qualifications

Minimum Qualifications

• Bachelor’s degree in STEM, Computer Science, or relevant field
• Minimum of 7 years of experience in related field, with a preference for significant career focus in both application security and software design and development (Python and/or Java preferred)
• Expert knowledge of application security and OWASP Top 10
• Proficiency in threat modeling, vulnerability testing, risk management methodologies and processes
• Proficiency with security automation tooling and methods (e.g., Terraform, Ansible, containerization, SBOM)
• Proficiency with application testing (e.g., SAST, DAST, MAST, Pen Test tooling)
• Proficiency with scripting (e.g., PowerShell, Python, Perl, Bash)
• Proficiency with DevSecOps and CI/CD technology stacks (e.g., IaC, AWS, Harness, TeamCity, GitHub, Artifactory, Chef, CloudWatch)
• Proficiency with web and app security stack (e.g., API security)
• Proficiency with vulnerability management processes and remediation guidance
• Proficiency in compliance frameworks (NIST 800-53, ISO 27001, OWASP frameworks) and processes
• Proficient in risk management methodologies
• Proficient in cloud technologies (AWS preferred)
• Ability to work independently and self‑motivate
• Excellent problem solving, critical thinking, interpersonal, collaboration, written and verbal communication skills
• Legal authorization to work in the United States without sponsorship
• Successful completion of interview required to meet job qualification
• Reliable, punctual attendance is essential

Preferred Qualifications

• Master’s degree
• Proficiency with Python, Java, .Net and modern programming language structures (e.g., OOP, web frameworks)
• Experience in cryptography
• Proficient knowledge of IAM (authentication and authorization)
• Understanding of network security (WAF, micro‑segmentation)
• CISSP or equivalent
• Other certifications: CEH, GSEC, CISM, Security+, CSSLP, CISA, SSCP, CASP+, OSCP
• Minimum of 12 years of experience in application development and cybersecurity
• Experience with penetration testing and vulnerability exploitation
• Experience with waterfall and agile development, integrating secure practices
• Success implementing Secure SDLC frameworks at large corporations
• Knowledge of AWS cloud security infrastructure (serverless, containerization, service mesh, micro‑services)
• Experience with LLM/GenAI technologies
• Experience in mobile development

Salary and Benefits

Post expiration date: 2/28/2026

The base pay range for this role is $137,275.00 to $178,670.00.

Base salary is dependent on job‑related factors such as experience, education, and skills. The role may also be eligible for bonus and/or long‑term incentive compensation awards.

Eligible benefits include medical, dental, vision, life, accident and disability, parental leave, employee assistance program, commuter, paid holidays, paid time off, 401(k), and flight privileges.

Legal and Diversity Statement

United Airlines is an equal opportunity employer. United Airlines recruits, employs, trains, compensates, and promotes regardless of race, religion, color, national origin, gender identity, sexual orientation, physical ability, age, veteran status, and other protected status as required by applicable law. Equal Opportunity Employer – Minorities/Women/Veterans/Disabled/LGBT.

We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform crucial job functions. Please contact JobAccommodations@united.com to request accommodation.