Engineer Security

Position Summary

The Engineer will design, deploy, maintain, monitor, optimize, and document security solutions across all of JetBlue's environments. The Engineer will conduct tests and validate that the security solutions and controls are properly implemented and effective. The Engineer participates in identifying security gaps within production systems, proposes security solutions, and drives projects to completion.

• Design, develop, and implement security solutions
• Enforce information security policies, standards, and develop procedures supporting security solutions
• Create project plans, define milestones, identify dependencies, and bring projects to closure
• Deliver technical reports and formal testing results on test findings
• Develop and maintain internal tools which automate redundant operation Intrusion Prevention System (IPS) al tasks
• Respond to escalations for service issues, problems, and critical situations to support resolution and response procedures
• Evaluate new technologies and/or processes to enhance security capabilities
• Automate security operations using scripting (Python, Bash, PowerShell) and orchestration tools
• Apply data-driven approaches to threat analysis, leveraging metrics and trends to guide remediation and prevention
• Integrate automation frameworks and pipelines for security deployment
• Engineer and administer SIEM platforms (e.g., Splunk, Cribl, Nxlog), including data source onboarding, log parsing, field extraction, and index optimization
• Design and secure containerized and cloud-native architectures using Docker, Kubernetes, and microservices
• Collaborate with teams to strengthen application and web security controls, including secure web gateways, Web application Firewall (WAF), API protection, and mitigation of OWASP Top 10 vulnerabilities
• Other duties as assigned

• Bachelor's Degree in Computer Science, Information Technology, or an Engineering or relevant field; OR demonstrated capability to perform job responsibilities with a High School Diploma/GED and at least four (4) years of previous relevant work experience
• Three (3) years of information security or other relevant experience
• Proficiency with identity and access management principles
• Proficiency with Cloud technologies such as Storage, Messaging Queues, Container Services, APIs, EventHubs, VMs
• Proficiency with Networking, ACLs, and network device functions (routers, firewalls, load balancers)
• Proficiency with security device functions such as Intrusion Detection and Prevention Systems, Web Application Firewalls, Data Loss Prevention, encryption, and endpoint security
• Proficiency with risk, security controls, compliance, authentication, authorization, and accountability
• Extensive hands-on experience with Linux-based systems (e.g., RHEL, Ubuntu, Debian), including system administration, service management (systemctl), log analysis, text editing (vim/nano), and backup operations (tar, rsync)
• Strong background in cloud platforms such as Microsoft Azure, AWS, and Google Cloud Platform (GCP), including cloud-native security and architecture design
• Available for occasional overnight travel (10%)
• Must pass a pre-employment drug test
• Must be legally eligible to work in the country in which the position is located
• Authorization to work in the US is required, this position is not eligible for visa sponsorship

• Security+ (or equivalent) certification
• Knowledge of Information Security principles
• Ability to work collaboratively during incidents involving potential attacks (e.g., scans, MITM, DoS/DDoS, malware)
• Experience in Security Automation Platforms such as Cortex XSOAR
• Experience with container security and securing distributed microservice environments
• Hands-on experience with SIEM tools, logging pipelines, and data analytics to support proactive threat hunting
• Strong understanding of automation, orchestration, and infrastructure-as-code (Terraform, Ansible)
• Demonstrated expertise in web and application security, including WAFs, secure APIs, and OWASP Top 10 mitigation
• Willingness and aptitude to develop in-depth knowledge of network and endpoint security technologies and continuously improve these skills
• Strong communication skills to articulate technical processes to diverse audiences

• Regular attendance and punctuality
• Potential need to work flexible hours and be available for short-notice response
• Able to maintain a professional appearance
• Assist with light aircraft cleaning when traveling on JetBlue flights (time permitting)
• Must embody JetBlue's core values: Safety, Caring, Integrity, Passion, and Fun
• Promote JetBlue's #1 value of safety as a Safety Ambassador, supporting SMS components and behavioral standards
• Identify and report safety or security concerns via JetBlue's confidential reporting systems
• The use of ChatGPT or any other automated tool during the interview process will disqualify a candidate from being considered for the position.

Equipment:

• Computer and other office equipment
• Sometimes there's an additional bullet, i.e., mobile phone or tablet

Work Environment:

• Traditional office environment

Physical Effort:

• Generally not required, or up to 10 pounds occasionally, 0 pounds frequently (Sedentary)

Compensation:

• The base pay range for this position is between $90,500.00 and $128,600.00 per year. Base pay is one component of JetBlue's total compensation package, which may also include access to healthcare benefits, a 401(k) plan and company match, crewmember stock purchase plan, short-term and long-term disability coverage, basic life insurance, free space available travel on JetBlue, and more

#LI-AC1

#LI-Hybrid