The Avelo story begins with a simple purpose — to Inspire Travel.

Led by a team of world-class executives, we endeavored to build a different and better kind of airline. On April 28, 2021, Avelo Airlines took flight for the first time — ushering in a new era of convenient, affordable, and reliable air travel.

We help our customers fly for less so they can fly more. That means more opportunities to connect with family and friends while exploring new places and revisiting old favorites. But we don’t just save them money. We fly out of smaller, more convenient airports, so we also save them time and hassle.

Today, Avelo serves over 40 destinations from our bases at Los Angeles’ Hollywood Burbank Airport (BUR), Southern Connecticut’s Tweed-New Haven Airport (HVN), Orlando International Airport (MCO), the Delaware Valley’s Wilmington Airport (ILG), and Raleigh-Durham International Airport (RDU). That means more opportunities for them to connect with family and friends while exploring new places and revisiting old favorites.

Purpose: We are seeking an experienced and dynamic individual to join our team as the Director of Cyber Security. In this role, you will be responsible for developing and executing comprehensive strategies to safeguard our organizations digital assets, systems, and information. You will hire and lead skilled cyber security professionals, collaborating across departments to ensure the highest level of protection against evolving cyber threats. This is a strategic leadership role that requires a deep understanding of cyber security best practices, technology trends, and risk management.

Responsibilities: 

1. Strategy and Planning:

• Develop and implement a holistic cyber security strategy aligned with the organizations business objectives.
• Stay abreast of emerging cyber threats, vulnerabilities, and industry trends to adapt the strategy accordingly.
• Create a roadmap for the enhancement and maintenance of cyber security policies, procedures, and technologies.

2. Team Leadership:

• Lead, mentor, and motivate a team of cyber security experts, providing guidance and fostering professional growth.
• Collaborate with cross-functional teams to ensure a cohesive and coordinated approach to cyber security across the organization.
• Foster a culture of security awareness and vigilance among all employees.

3. Risk Management:

• Identify potential cyber security risks and vulnerabilities through continuous assessment and proactive threat modeling.
• Implement risk management strategies to mitigate threats and minimize potential impacts on the organization.
• Lead incident response and recovery efforts in the event of a cyber security breach or incident.

4. Security Architecture and Technology:

• Oversee the design, implementation, and management of security architecture, ensuring the confidentiality, integrity, and availability of data and systems.
• Evaluate and recommend new cyber security technologies, tools, and solutions to improve the organizations security posture.
• Collaborate with IT teams to ensure that security is integrated into the organizations technology infrastructure.

5. Compliance and Regulations:

• Ensure compliance with relevant industry standards, regulations, and data protection laws (e.g., PCI, SOX, GDPR, HIPAA, ISO 27001).
• Establish and maintain relationships with regulatory bodies and external partners to ensure alignment with security requirements.

6. Training and Awareness:

• Develop and deliver cyber security training programs for employees at all levels, promoting a strong security culture.
• Conduct periodic security awareness campaigns to educate staff about potential threats and best practices.

7. Vendor and Third-Party Management:

• Evaluate the security posture of third-party vendors and partners and establish security requirements for contracts.
• Collaborate with procurement and legal teams to ensure security considerations are integrated into vendor agreements.

• Bachelors or Master’s degree in cyber security, Information Technology, Computer Science, or related field (advanced certifications preferred).
• Proven experience (8+ years) in a senior cyber security role, with at least 3 years in a leadership or managerial capacity.
• In-depth knowledge of cyber security principles, risk management, and compliance standards.
• Strong familiarity with security technologies such as firewalls, intrusion detection systems, SIEM, encryption, and endpoint security.
• Excellent communication and interpersonal skills, with the ability to convey complex technical concepts to non-technical stakeholders.
• Demonstrated experience in leading and managing incident response and recovery efforts.
• Professional certifications such as CISSP, CISM, CISA, or similar are a plus.
• Strong analytical and problem-solving skills with a strategic mindset.

X-Factors:

• Experience as a hands-on software engineer so you understand the core principles of the engineering work.
• You are obsessed with performance of technology systems, site-speed and reliability.
• You are a team player – at Avelo we succeed as “One Crew.”
• You have uncompromising integrity – at Avelo we “Do the Right Thing.”
• You work fast and get stuff done – we are growing fast and seek fellow Crewmembers who thrive in a dynamic and high-velocity startup environment.
• You are hungry and humble – you are never content with your big wins and share our belief that excellence is a never-ending journey of continuous learning and improvement.
• You have an obsession for detail – you know small oversights are the source of big problems.

May perform other responsibilities as assigned. Responsibilities and duties may change when circumstances dictate (e.g., emergencies, changes in workload, etc.). 

Avelo is an equal opportunity employer.