Job Description

Southwest will provide a stable work environment with equal opportunity for learning and personal growth. Employees will be provided the same concern, respect, and caring attitude within the organization that they are expected to share externally with every Southwest Customer.

The Cybersecurity Risk and Compliance Manager is responsible for managing and communicating cybersecurity risk while maintaining compliance with policies and applicable regulations to influence secure business-driven outcomes. These responsibilities include the identification, evaluation and interpretation of regulatory and security requirements, control deficiencies and cybersecurity risks

WORK ACTIVITIES/CONTEXT:

People & Organizational Leadership:

* Provide input and help define multi-year strategy and roadmaps
* Cultivate, support, and promote an organizational culture that provides for high performance, high morale, integrity, teamwork and work-life balance.
* Lead, support, and influence the achievement of the mission, goals and objectives of the department and organization.
* Participate fully in organizational processes / initiatives, i.e. performance management, interviewing, budgeting, training, etc.
* Lead the resolution of organization, team and individual issues, making appropriate decision.
* Recruit, develop, and retain individuals with skills, attitude, and experience necessary to enable the organization to meet commitments.
* Provide continuous coaching to improve Teammember, peer performance and business knowledge.
* Develop and execute strategies and processes to improve performance and the value of products and services provided.
* Lead cross-functional Teams to deliver solutions and services to meet enterprise needs.
* Represent multiple teams and customers related to cross-department initiatives, meetings and decisions.
* Promote and participate in the exchange of learning across the organization.
* Pursue technical, functional and professional development opportunities with the company and industry.

Business Knowledge:

* Advocate compliance with cybersecurity policies, regulatory and contractual requirements
* Possess a solid working knowledge of the business functions that align with assigned Team's responsibilities, and effectively apply that knowledge to provide solutions, support and services.

Functional / Technical Knowledge:

* Assist in facilitating the audit and assessment work performed by the internal and external auditors and assessors.
* Collaborate on critical Technology projects to ensure that security policy/control issues are addressed throughout the project life cycle
* Perform third party risk management activities such as supplier security assessments/reviews, contractual terms analysis, and ongoing monitoring of supplier adherence to security commitments while improving the processes over time.
* Provides Technical thought Leadership related to assigned functional areas.
* Understands best practices, capabilities and constraints related to delivering technical solutions.
* Specializes in delivering technology solutions using best practices to achieve maximum Team productivity while delivering high quality products.
* Stays abreast of emerging trends, processes, and solutions related to assigned responsibilities.

Influencing & Relationship Building:

* Build relationships with Leaders to accelerate the adoption of compliance and security initiatives
* Builds strong, collaborative relationships & credibility with various Teams inside & outside of Technology.
* Influences and drives change across respective Business and Technology functions.

Financial Accountability:

* Effectively oversees fiduciary responsibilities.
* Works with Technology and business partners to measure financial benefits and demonstrable business value.
* Must be able to meet any physical ability requirements listed on this description.
* May perform other job duties as directed by Employee's Leaders.

BASIC QUALIFICATIONS:

* High School Diploma, GED or equivalent education required.
* Must be at least 18 years of age.
* Must have authorization to work in the United States as defined by the Immigration Reform Act of 1986.

EDUCATION:

* BS / MS or BA / MBA preferred.

WORK EXPERIENCE:

* Minimum of 5 years' work experience in a Business and / or Information Technology environment.
* Minimum of 2 years' work experience leading teams and providing work direction.
* Experience with Payment Card Industry Data Security Standard (PCI-DSS), Sarbanes-Oxley (SOX), Air Navigation Service Provider (ANSP), NIST Cybersecurity Framework (CSF), and/or NIST Privacy Framework preferred.
* Experience with Cybersecurity third-party risk management preferred.
* Functional knowledge of cloud computing preferred.
* Industry certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA) preferred.

PHYSICAL ABILITIES:

* May be asked on occasions to lift and/or pull weights loads of approx. 20 lbs. on a periodic basis.
* May require extended work hours per Leaders' request.
* Must be able to climb, bend, kneel, crawl, and stoop on a periodic basis.

SKILLS/ABILITIES/KNOWLEDGE/WORK STYLE:

Core Knowledge:

* General knowledge of business/Leadership principals, including planning, organizing, directing, developing, and supervising
* General knowledge of personnel practices and regulations.
* General knowledge of software development practices, concepts, methodologies, tools and trends
* Proficient knowledge of project management methodologies

Critical Skills:

* Excellent partnering, negotiation and communication skills in order to facilitate interactions with business Customers and technology teams.
* Provides tactical leadership for Team(s)
* Uses appropriate motivation and influence techniques to achieve desired Team results.
* Sets and manages stakeholder expectations.
* Delivers quality projects on time and within budget.
* Manages projects using the organization's project management methodology.
* Must be able to comply with Company attendance standards as described in established guidelines.

OTHER QUALIFICATIONS:

* Limited travel with potential for increased/decreased travel based upon Technology Department needs.
* Must maintain a well-groomed appearance per Company appearance standards as described in established guidelines.

Southwest Airlines is an Equal Opportunity Employer.

Please print/save the job description because it won't be available after you apply.