Application Security Engineer

Working at Breeze Airways is an exciting endeavor and a serious commitment to bring “The World’s Nicest Airline” to life. We work cross-functionally with truly awesome Team Members to deliver on our mission: “To make the world of travel simple, affordable, and convenient. Improving our guests travel experience using technology, ingenuity and kindness.”

Breeze is hiring- join us!

As an Application Security Engineer II, you will be responsible for integrating security into the software development lifecycle. You will collaborate with software developers and the DevOps team to design, develop, and deploy secure software solutions. Your primary focus will be on maturing our continuous integration (CI) and continuous deployment (CD) processes.

Here's what you'll do

• Implement security measures within the Continuous Integration/Continuous Deployment (CI/CD) pipeline, such as automated security testing and vulnerability scanning.
• Monitor and respond to security incidents within the CI/CD pipeline, working to identify and mitigate potential risks to the organization.
• Continuously assess and improve the security practices within the CI/CD pipeline to ensure ongoing compliance with industry standards and regulatory requirements.
• Review and assess software architecture and design for potential security risks and recommend improvements.​
• Train and provide guidance to development teams on secure coding techniques and practices. ​
• Collaborate with other Security team members to build a shared understanding of security objectives and maintain a culture of security awareness.​
• Evaluate and recommend security tools and technologies to enhance the organization's overall security posture.​
• Collaborate with developers, IT teams, and management to establish security policies and best practices across the organization.​
• Collaborate with other IT team members on providing evidence and guidance for company audits such as PCI DSS 4.0 and SOC 2.
• Other duties as assigned.
• Achieve performance measures and adhere to established standards in conjunction with Breeze Aviation Group Values of Safety, Kindness, Integrity, Ingenuity and Excellence.

Here's what you'll need to be successful

Minimum Qualifications

• Familiarity with DevOps tools such as Kubernetes, Docker and GitLab.
• Familiarity with AWS and Azure Cloud environments.
• Be obsessed with quality, highly detailed-oriented, and passionate.
• High performance orientation, ability to work well under pressure, prioritize projects, meet deadlines, and maintain flexibility.
• Strong attention to detail, organization, and time management skills.
• Self-starter must have a positive attitude and strong desire for success.
• Complete projects on time with minimal supervision, ability to work varied hours when necessary, to meet deadlines.

Preferred Qualifications

• 4-year degree or equivalent work experience.
• 1-5+ years of experience as an Application Security Engineer.
• Strong understanding of the SLSA framework.
• Familiarity with multiple programming languages.
• Related Information Security industry certifications.

Skills/Talents

• Exemplifies Breeze’s safety culture, values, and mission
• Excellent oral and written communication skills
• Excellent problem-solving skills
• Ability to work with individuals and teams at all levels in the organization

Perks of the Job

• Health, Vision and Dental
• Health Savings Account with Breeze Employee Match
• 401K with Breeze Employee Match
• PTO
• Travel on Breeze and other Airlines too!

Breeze Airways provides equal employment opportunities to all Team Members and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws.  This policy applies to all terms and conditions of employment, including recruiting hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.

Breeze Airways will never request your Social Security Number, Driver’s License or Date of Birth on our job postings. Job Postings requesting any or all of this information should be regarded as a scam. To ensure you are applying to an actual Breeze Airways posting, please apply online at www.flybreeze.com  then click “Careers” at the bottom of the page.