Sr Manager, IT Cyber Physical Security

Are you ready to explore a world of possibilities, both at work and during your time off? Join our American Airlines family, and you’ll travel the world, grow your expertise and become the best version of you. As you embark on a new journey, you’ll tackle challenges with flexibility and grace, learning new skills and advancing your career while having the time of your life. Feel free to enrich both your personal and work life and hop on board!

As part of the Cyber Physical Security team, you’ll help deliver secure digital products that support a reliable and profitable airline. You will design, implement, and care for cybersecurity solutions that protect users, systems, operations, and data, by ensuring strong identity controls such as role‑based access, authentication, authorization, and governance.

This role requires attention to detail, strong problem‑solving, and high ethical responsibility. The fast‑paced global airline environment offers opportunities for professional development, continuous growth, and meaningful impact.

In this role, you will be responsible for supporting and overseeing Cyber Physical Security platforms, teams, and processes aligned to your scope of responsibility. This includes protecting American Airlines’ most critical operational environments—aircraft systems, aviation operational technology (OT), and safety‑critical digital platforms—by partnering with system owners, engineering teams, operations, and enterprise cybersecurity organizations. Additional information about the skills needed for this position is listed in the Skills, Licenses, & Certifications section below.

As noted above, this list is intended to reflect the current job but there may be additional essential functions (and certainly non-essential job functions) that are not referenced.  Management will modify the job or require other tasks be performed whenever it is deemed appropriate to do so, observing, of course, any legal obligations including any collective bargaining obligations.

• Aircraft Cybersecurity Enablement: Set direction and accountability for cybersecurity enabling capabilities that support secure aircraft operations, including identity and trust services, security logging and analytics, maintenance device security, and aircraft‑to‑ground security services.
• Operational Technology (OT) Security Leadership: Establish strategic oversight for cybersecurity support of aviation and maintenance OT environments, ensuring operational teams are enabled while maximizing use of enterprise security capabilities.
• Airworthiness Cyber‑Safety Risk Management: Lead airworthiness cybersecurity risk management by overseeing risk assessments, shaping strategic mitigation plans, and driving continuous improvement of security measures supporting aircraft operations.
• Solution Risk Evaluation: Define and oversee consistent evaluation of cybersecurity risks and mitigations for aircraft‑related technologies and services, including inflight entertainment and connectivity, SATCOM providers, and third‑party suppliers.
• Cyber‑Physical Policy and Standards Leadership: Set and govern cybersecurity policies and standards for aircraft and OT environments, ensuring alignment with aviation regulations, safety objectives, and enterprise frameworks.
• Unified Control Framework Stewardship: Own and evolve the unified control framework that maps aviation and Aircraft Network Security Program (ANSP) requirements to enterprise controls, enabling consistent standards adoption and compliance alignment.
• Cyber‑Physical Risk Governance: Establish and govern mechanisms to ensure aircraft and OT cyber‑safety risks are documented, prioritized, and managed through formal acceptance, exceptions, and compensating controls.
• Aircraft Information Security Center (AISC) Leadership: Lead and operate the Aircraft Information Security Center as a cross‑functional governance forum that drives collaboration, risk sharing, and alignment across engineering, operations, safety, and cybersecurity teams.
• Program and Portfolio Accountability: Hold accountability for aircraft and OT cybersecurity programs delivered through managers and their teams, ensuring priorities, resourcing, and outcomes align with strategic objectives.
• Strategic Planning and Alignment: Define aircraft and OT cybersecurity strategy and multi‑year roadmaps, balancing operational realities, regulatory expectations, and enterprise cybersecurity direction.
• Audit, Compliance, and Regulatory Accountability: Oversee regulatory engagement, audits, and assessments for aircraft and OT cybersecurity, ensuring findings are addressed through measurable, owner‑assigned action plans.
• Leadership and Talent Development: Lead, coach, and develop people leaders and teams of aircraft and OT cybersecurity domain experts, reinforcing clear expectations, accountability, and a culture of continuous improvement.

Minimum Qualifications- Education & Prior Job Experience

• Bachelor’s degree in Computer Science, Computer Engineering, Technology, Information Systems (CIS/MIS), Engineering, or a related technical discipline, or equivalent experience or training
• 7+ years prior job experience in cybersecurity, cyber‑physical security, or a closely related field
• 5+ years in a people leadership role

Preferred Qualifications- Education & Prior Job Experience

• Bachelor’s degree in Information Security, Computer Science, or a related field; advanced degree preferred
• 7+ years of IT or cybersecurity experience in a closely related field
• Proven track record of contributing to the development and execution of cybersecurity programs in regulated or operational environments
• Experience supporting security audits, assessments, and remediation activities
• Experience working in regulated, compliance‑driven, or safety‑critical cybersecurity programs
• Experience supporting cyber‑physical, operational technology, critical infrastructure, or complex operational environments
• Experience leading technical teams or security‑focused workstreams
• Direct experience supporting or interfacing with regulatory or oversight authorities

Skills, Licenses & Certifications

• In‑depth knowledge of aircraft, cyber‑physical, and operational technology (OT) cybersecurity principles, technologies, and best practices
• Understanding of cybersecurity tools and technologies used in aircraft and OT environments, such as identity and trust services, security logging and analytics, secure communications, and device authentication mechanisms
• Knowledge of principles and practices for managing cybersecurity risk in safety‑critical and operational environments, including risk assessment, compensating controls, and risk acceptance
• Knowledge of regulatory and compliance requirements related to aviation, transportation, and critical infrastructure cybersecurity
• Strong problem‑solving and analytical skills to identify, assess, and address cyber‑physical and OT security risks
• Strong verbal and written communication skills to effectively engage technical and non‑technical stakeholders, including engineering, operations, safety, regulators, and executive leadership
• Capability to manage aircraft and OT cybersecurity initiatives and programs, with experience working across technology teams, business teams, vendors, and operational stakeholders
• Ability to develop, update, and enforce comprehensive cybersecurity strategies, policies, and standards for aircraft and OT environments
• Proficiency in ensuring compliance with cybersecurity standards and conducting risk assessments within regulated and safety‑critical operational domains
• Strong analytical skills to identify and address aircraft and OT‑related cybersecurity threats, balancing security, safety, and operational constraints
• Strong management and execution skills to oversee implementation and ongoing maturity of cybersecurity programs through collaboration with enterprise security and operational teams
• Relevant professional certifications such as CISSP, CISM, GICSP, or equivalent
• Active TSA or U.S. Department of Defense Secret security clearance, or the ability to obtain and maintain such clearance, as required

Feel free to take advantage of all that American Airlines has to offer: 

• Travel Perks: Ready to explore the world? You, your family and your friends can reach 365 destinations on more than 6,800 daily flights across our global network.
• Health Benefits: On day one, you’ll have access to your health, dental, prescription and vision benefits to help you stay well. And that’s just the start, we also offer virtual doctor visits, flexible spending accounts and more. 
• Wellness Programs: We want you to be the best version of yourself – that’s why our wellness programs provide you with all the right tools, resources and support you need.
• 401(k) Program: Available upon hire and, depending on the workgroup, employer contributions to your 401(k) program are available after one year.
• Additional Benefits: Other great benefits include our Employee Assistance Program, pet insurance and discounts on hotels, cars, cruises and more

From the team members we hire to the customers we serve, inclusion and diversity are the foundation of the dynamic workforce at American Airlines. Our 20+ Employee Business Resource Groups are focused on connecting our team members to our customers, suppliers, communities and shareholders, helping team members reach their full potential and creating an inclusive work environment to meet and exceed the needs of our diverse world.

Are you ready to feel a tremendous sense of pride and satisfaction as you do your part to keep the largest airline in the world running smoothly as we care for people on life’s journey? Feel free to be yourself at American.