Engineer, Application & Cloud Security

Why Work for Frontier Airlines?

At Frontier, we believe the skies should be for everyone. We deliver on this promise through our commitment to Low Fares Done Right. This is more than our tagline - it’s our driving philosophy. Every member of Team Frontier has an important role to play in bringing this vision to life.  Our successful business model allows travelers to take advantage of our fast-growing route network while our bundled and unbundled pricing options allow our customers to personalize their travel experience and only pay for the services they need – saving them money along the way.

What We Stand For

Low Fares Done Right is our mission and we strive to bring it to life every day.  Our ‘Done Right’ promise means delivering not only affordable prices, but making travel friendly and easy for our customers.  To do this, we put a great deal of care into every decision and action we take. We must be efficient with the use of our resources and make smart decisions about how we run our business. We must also innovate and be pioneers - we’re not afraid to try new things.  While our business requires us to fly high in the air, we also consider ourselves down-to-earth in our approach, creating a warm and friendly experience that truly demonstrates Rocky Mountain Hospitality.

Work Perks

At Frontier, we like to think we’re creating something very special for our team members.  Work is why we’re here, but the perks are nice too:

• Flight benefits for you and your family to fly on Frontier Airlines.
• Buddy passes for your friends so they can experience what makes us so great.
• Discounts throughout the travel industry on hotels, car rentals, cruises and vacation packages.
• Discounts on cell phone plans, movie tickets, restaurants, luggage and over 2,000 other vendors.
• Enjoy a ‘Dress for your Day’ business casual environment.
• Flexible work schedules that support work/life balance.
• Total Rewards program including a competitive base salary, short term incentives, long-term incentives, paid holidays, 401(k) plan, vacation/sick time and medical/dental/vision insurance that begins the 1^st of the month following your hire date.
• We play our part to make a difference. The HOPE League, Frontier Airlines’ non-profit organization, is dedicated to providing employees financial assistance during catastrophic hardship.

Who We Are 

Frontier Airlines is committed to offering ‘Low Fares Done Right’ to more than 100 destinations and growing in the United States, Canada, Dominican Republic and Mexico on more than 350 daily flights. Headquartered in Denver, Frontier’s hard-working aviation professionals pride themselves in delivering the company’s signature Low Fares Done Right service to customers. Frontier Airlines is the proud recipient of the Federal Aviation Administration’s 2018 Diamond Award for maintenance excellence and was recently named the industry’s most fuel-efficient airline by The International Council on Clean Transportation (ICCT) as a result of superior technology and operational efficiencies.

What Will You Be Doing?

Frontier is seeking a technical expert in Application and Cloud Security to execute on cyber strategy, while playing a key role in assessing, challenging, and advising on infrastructure, platform, and software services. The Engineer is responsible for improving Frontier’s cybersecurity on applications, cloud, and technology platforms. The responsibility of this position is developing, executing, and maintaining a superior cloud and application security program that promotes resiliency by identifying and mitigating application/cloud risks and threats for the organization. The Engineer will contribute to, provide oversight, and execute application/cloud compliance initiatives. S/he will work with IT, business, and cybersecurity team members to ensure that appropriate planning, communication, and execution of activities ensure the successful delivery of the program.

The ideal candidate will display a strong understanding of industry best practices in the Cloud including governance, engineering, architecture, and networking. The function will include active management of key services: application and cloud security testing, vulnerability management, security configuration hardening, data loss prevention, pen testing, and security program management.

Essential Functions

• Lead application security functions, developing and driving programmatic efforts to address external, internal, and emerging application security risks throughout the organization.
• Work closely with the engineering/architecture teams to evaluate the security readiness of new and existing applications introduced into the environment.
• Assess cloud service offerings from AWS, Microsoft Azure, or Google Cloud Platform (GCP) to identify threats, risks, and controls to secure the service.
• Support third-party vendor risk management (TPRM) review process for technology-related vendors (systems and applications).
• Conduct security assessments of application, network, and computing architecture before systems are placed in production.
• Communicate technical application security control concepts to team members, including developers, architects, and managers.
• Be an application security evangelist who can translate security concepts into language that is meaningful to varying audiences, including business and technical leaders.
• Research and recommend changes to procedures and systems to enhance application and data security.
• Serve as a security subject matter expert (SME) in a consultative capacity with the engineering/development teams throughout the system lifecycle.
• Collaborate effectively with colleagues, stakeholders, lines of business and leaders across the organization to achieve Cloud Security objectives.
• Implement tools to assess and enforce application security policies and guidelines.
• Enable security best-practices and security software integration into application developers SDLC processes.
• Design, develop, and deliver application security strategy throughout the CI/CD lifecycle.
• Work with the system/application teams to ensure that application security risks are effectively identified with security testing functions (SAST, DAST, IAST, pen test) and appropriately addressed while maintaining a balance between security & usability.
• Supports compliance efforts around data loss prevention and data security governance.
• Oversee compliance hardening governance on cloud and application landscape. Conducting hardening checks of device configurations to determine version compliance and identify and mitigate weaknesses.
• Demonstrate and apply knowledge of data protection regulation and laws to the environment, such as the CCPA, CPRA, HIPAA, GLBA, PCI, and CDPA.
• Research emerging technologies and maintain awareness of current security risks in support of security enhancement and development efforts.
• Stay current on emerging Cloud computing vulnerabilities, threats, controls, and potential implications for the organization.
• Coordinate and ensure delivery of secure coding awareness training to software engineers/developers.
• Play an active role in counseling and mentoring junior cybersecurity team members.

Qualifications

• Bachelor’s degree required (Master’s degree a plus) in either: Business, Finance, Computer Science, Engineering, IT, or similar field.
• 3 years of experience in enterprise and/or application cybersecurity.
• 2 years of cloud experience with AWS, Microsoft Azure, or Google Cloud Platform
• Hold an active cybersecurity certification, such as a CSSLP, CISSP, CISA, CCP, CSSLP, GCSA MCP, MCSE, SANS, or Microsoft AZ (highly desired, or equivalent experience is acceptable).
• Experience with the airline industry a plus.

Knowledge, Skills and Abilities

• Ability to facilitate a climate of cohesiveness, cooperation, and teamwork.
• Experience with security concepts and tooling such as: SAST (Static Application Security Testing), DAST (Dynamic Application Security Testing), IAST (Interactive Application Security Testing), Web Application Penetration Testing, and Open-Source Analysis.
• Experience with secure CI/CD pipeline design and architecture, automation, and secure code gating.
• Experience securing cloud IAAS and PAAS environments (Azure, AWS, Google Cloud).
• Experience with integrating applications with SAML and Azure AD.
• Knowledge of mobile application and device security (iOS/Android).
• Experience with encryption technologies and methods.
• Experience with Kubernetes and micro-services architecture.
• Experience with industry compliance standards and frameworks such as PCI-DSS, HIPPA, NIST, ISO, ITIL, COSO, COBIT, and SOC1/2.
• Self-directed IT professional with strong work ethic and excellent organizational skills.
• Strong oral and written skills both technical and non-technical.
• Ability to work in a fast-paced, sometimes stressful team environment with the ability to adapt to new, different, or changing situations.
• Demonstrated troubleshooting approach and skills.
• Strong interpersonal, business management, and customer service skills.

Equipment Operated

SAST (Static Application Security Testing), DAST (Dynamic Application Security Testing), IAST (Interactive Application Security Testing), Web Application Penetration Testing, and Open-Source Analysis.

Work Environment

Typical office environment, adequately heated and cooled.

Will require being on call for afterhours and weekend support.

Physical Effort

Light physical effort required by handling objects up to 20 pounds occasionally and/or up to 10 pounds frequently.

Supervision Received

General Direction:  The incumbent normally receives little instruction on day-to-day work and receives general instructions on new assignments.

Positions Supervised

Not applicable currently.

Salary Range

$103,200.00 - $129,000.00.

Workplace Policies

At Frontier Airlines, we wholeheartedly support and have a strong commitment to Equal Employment Opportunity (EEO) and Affirmative Action. Frontier is committed to providing equal employment opportunities for all persons regardless of race, color, religion, gender, gender variance, sexual orientation, age, genetic information, martial status, national origin, citizenship status, disability, military, veteran status, and any other basis protected by federal, state, or local laws.

Diversity is an essential part of our success. Our company flourishes because of the unique backgrounds, skills and ideas that our team members contribute every day. We salute and actively recruit veterans. Military experience is valuable and transferable to many of the positions essential to the operations of our airline.

Frontier Airlines is a Zero Tolerance Drug-Free Workplace. All prospective DOT safety-sensitive employees are subject to pre-employment testing for the following drugs and their metabolites: Marijuana, Cocaine, Amphetamines, Opioids and Phencyclidine (PCP). Further, any DOT safety-sensitive job applicant who is found to have tested positive on any required drug or alcohol test at a former employer will be considered ineligible for employment with Frontier.

Disclaimer: The above statements are intended only to describe the general nature and level of work required of the referenced position; they are not intended to be an exhaustive list of all responsibilities, duties, and skills required of individuals in this position.  Please be advised that duties and expectations of this position may be subject to change.