Title:  Analyst Cybersecurity Gov & Compliance

Position Summary

The Cyber Security Analyst develops and maintains JetBlue Airways' Compliance Maintenance Program, Security Awareness Program and supports all other IT Security programs and initiatives.

Essential Responsibilities

• Ensures that the appropriate information security policies, standards, procedures, and best practices are developed, communicated, and followed
• Participates in Project Management activities to support IT Security programs and initiatives
• Works with internal and external Auditors to assess compliance with policies, standards, procedures, and best practices
• Maintains systemic, analytical Compliance programs
• Works with internal and external auditors to assess annual regulatory compliance
• Participates in the development and delivery of a comprehensive information security training program that provides the appropriate training for all crewmembers
• Act as a messenger/advocate for Information Security to all Crewmembers to achieve a high degree of awareness
• Gathers and reports metrics which fully reveal the state of information security at JetBlue Airways
• Other duties as assigned

Minimum Experience and Qualifications

• Bachelor's Degree in a related discipline with specialized leadership training; OR demonstrated capability to perform job responsibilities with a High School Diploma/GED and at least four (4) years of previous relevant experience
• Security related certification (e.g. CISSP, CISA)
• One (1) year of Information Security & Compliance experience
• Demonstrated knowledge of industry best practices for project management
• Experience with regulatory/compliance requirements and other regulatory laws (PCI, PII, Privacy Laws, SOX, HIPAA, etc)
• Knowledge of ISO 17799; NIST SP 800:30 and other leading security standards
• Must pass a pre-employment drug test
• Available for occasional overnight travel (10%)
• Legally eligible to work in the country in which the position is located
• Authorization to work in the US is required, this position is not eligible for visa sponsorship

Preferred Experience and Qualifications

• Understanding of core security principles
• Four (4) years Information Security & Compliance experience
• Superior verbal and written communication skills to effectively manage project communications and stakeholder expectations at all levels of the organization
• Experience of regulatory/compliance requirements and other regulatory laws (PCI, PII, Privacy Laws, SOX, HIPAA, etc)
• Demonstrated knowledge of industry best practices for project management
• Familiar in managing Security Awareness Programs
• Familiar with Risk Management Practices
• Knowledge of information security policies, standards, procedures, and best practices
• Excellent interpersonal skills to influence business and IT teams to follow information security policies and procedures
• Team skills - able to work in a team environment as a productive and cordial team player
• Integrity - trustworthy, discrete, and able to handle information in confidence
• Excellent problem solving - determines relevant data, considers multiple perspectives, augments knowledge from other sources, uses alternative approaches to verify, and synthesizes information to determine relationships
• Time management - able to balance effort between multiple assigned tasks, recognizes when to seek help or guidance, and avoids a state of constant re-prioritizing as new tasks arise which prevents one from actually completing tasks

Crewmember Expectations:

• Regular attendance and punctuality
• Potential need to work flexible hours and be available to respond on short-notice
• Able to maintain a professional appearance
• When working or traveling on JetBlue flights, and if time permits, all capable crewmembers are asked to assist with light cleaning of the aircraft
• Must be an appropriate organizational fit for the JetBlue culture, that is, exhibit the JetBlue values of Safety, Caring, Integrity, Passion and Fun
• Promote JetBlue’s #1 value of safety as a Safety Ambassador, supporting JetBlue’s Safety Management System (SMS) components, Safety Policy, and behavioral standards
• Identify safety and/or security concerns, issues, incidents or hazards that should be reported and report them whenever possible and by any means necessary including JetBlue’s confidential reporting systems (Aviation Safety Action Program (ASAP) or Safety Action Report (SAR))
• The use of ChatGPT or any other automated tool during the interview process will disqualify a candidate from being considered for the position. 

Equipment:

• Computer and other office equipment

Work Environment:                                                                                                    

• Traditional office environment

Physical Effort: 

• Generally not required, or up to 10 pounds occasionally, 0 pounds frequently. (Sedentary)

Compensation: 

• The base pay range for this position is between $77,000.00 and $112,000.00 per year. Base pay is one component of JetBlue’s total compensation package, which may also include access to healthcare benefits, a 401(k) plan and company match, crewmember stock purchase plan, short-term and long-term disability coverage, basic life insurance, free space available travel on JetBlue, and more.

#LI-AC1

#LI-Hybrid