Managing Director - Digital Governance, Risk & Compliance (DGRC)

Chicago, IL, USA|Onsite

Job Overview

Compensation

Type:

Salary

Rate:

Range $226,005.00 - $294,180.00

Benefits

Medical insurance

Dental Insurance

Vision Insurance

Life insurance

accident insurance

Disability insurance

Parental leave

Employee assistance program

Commuter Benefits

Paid holidays

Paid Time Off

401(k) Plan

flight privileges

Job Description

United Airlines is a leading global airline that connects people and unites the world through extensive route networks and exceptional customer service. With operations spanning hundreds of locations worldwide, United Airlines serves millions of customers annually and employs tens of thousands of people dedicated to delivering a safe and seamless travel experience. Known for its commitment to innovation, diversity, and inclusion, United Airlines continuously strives to support its employees' growth and well-being. The company offers top-tier health and wellness benefits, opportunities for career advancement, and the chance to build lasting relationships both inside the organization and with its customers. Employees... Show More

Job Requirements

12+ years in digital governance risk and compliance leadership
minimum 5 years of experience in aviation defense or critical-infrastructure sectors
proven expertise implementing and maturing SOX PCI DSS DFARS/CMMC TSA AOSSP NIST CSF and ISO 27001 compliance programs
bachelor’s degree in cybersecurity computer science risk management or related field
ability to operate as both a hands-on contributor and strategic leader
experience developing and executing roadmaps for cybersecurity initiatives
skilled in working with CISO to manage cybersecurity activities
ability to represent the company with auditors regulators and industry associations
track record coaching and developing leaders at multiple levels
comfortable engaging and influencing at all organizational levels
legally authorized to work in the United States without sponsorship

Job Qualifications

12+ years in digital governance risk and compliance (GRC) leadership with a minimum 5 years of experience in aviation defense or other critical-infrastructure sectors
proven expertise implementing and maturing SOX PCI DSS DFARS/CMMC TSA AOSSP NIST CSF and ISO 27001 compliance programs
bachelor’s degree in cybersecurity computer science risk management or related field (master’s preferred)
proven ability to operate as both a hands-on contributor and a strategic leader
experienced in developing and executing roadmaps for high priority cybersecurity initiatives and lead cross-functional execution to drive initiatives to completion
skilled in working with CISO to manage cybersecurity activities and programs
ability to represent the company in discussions with auditors regulators and aviation industry trade associations
track record of coaching and developing individuals and leaders at multiple levels to achieve tangible results
achieved objectives by contributing information and recommendations to strategic plans identifying trends and driving changes
comfortable engaging and influencing at all levels of the organization
must be legally authorized to work in the United States for any employer without sponsorship

Job Duties

Serve as a thought leader on cybersecurity risk and resilience partnering with the CISO and business executives to define and implement a holistic DGRC strategy
translate strategic objectives into actionable roadmaps ensuring alignment of cyber risk and resiliency initiatives with business goals
mentor and develop a high performing team across DGRC audit risk analytics and supply chain security
lead ongoing quantitative risk assessments for critical systems including flight operations passenger data platforms cloud services and OT/IoT environments
prioritize and track risk mitigation plans deploying controls and countermeasures that reduce exposure to ransomware supply-chain compromise and emerging threats
develop meaningful dashboards and metrics that drive executive-level visibility into risk posture and progress toward target risk tolerances
develop and maintain comprehensive digital governance framework governance policies standards and procedures based on NIST Cybersecurity Framework ISO 27001 and COBIT
govern emerging technology lifecycles including cloud platforms AI/ML and IoT systems to ensure secure adoption
oversee enterprise compliance with relevant frameworks and regulations including SOX ITGC PCI DSS DFARS/CMMC TSA AOSSP SOC 2 NIST CSF and ISO 27001/27002
maintain clear up-to-date policies and procedures coordinate gap assessments and lead remediation efforts to sustain continuous audit readiness
architect and manage the airline’s cyber resiliency program partnering with the disaster recovery business continuity planning and crisis-management teams
design test and refine cyber event management playbooks tailored to aviation scenarios such as ground system disruptions passenger data breaches
design participate and evaluate cyber resiliency drills tabletop exercises simulations and full-scale rehearsals with internal teams and external authorities including FAA DHS and international regulators
ensure minimally viable operations can be maintained across key business processes during and after a cyber event
build strong partnerships with legal compliance HR IT operations and other stakeholders to embed resiliency and risk management into day-to-day activities
communicate risk findings resiliency plans and compliance status in clear business-focused terms to senior leaders and the Board
monitor the evolving threat landscape regulatory changes and best practices
evaluate and introduce new tools automation and processes that enhance efficiency elevate our security posture and support operational excellence

Job Location

We didn't receive the exact location for this job posting,

please contact the employer.

You may be also interested in: