Cybersecurity Engineer
Store Support Center

Salary Range: $130,000.00 to $158,000.00

(Hybrid)

We are searching for an experienced Cybersecurity Engineer for our Store Support Center, located at 600 Citadel Drive, Commerce, CA 90040.

Hybrid:

Candidates must be able to report to the Store Support Center 2-3 per week.

Primary Duties and Responsibilities:

The Cybersecurity Engineer provides subject matter expertise to deliver cybersecurity services to our enterprise across corporate teams and 3 brands of retail stores. This includes hands on support of all cybersecurity architecture and cybersecurity engagement functions such as incident response, threat intelligence, IoT security, systems operations/engineering (SecOps), architectural support, secure design, risk analysis, vulnerability management and threat hunting.

ESSENTIAL DUTIES AND RESPONSIBILITIES include the following. Other duties may be assigned or required.

• 
  Designs security architecture and expert technical guidance for cybersecurity posture and incident response
  
• Reviews current security architecture to identify gaps or deficiencies within the company’s network in order to resolve issues or find solutions.
  
• Performs validation reviews to ensure that network devices are tested, implemented, and maintained via upgrades, patches, and updates with appropriate security controls as well as performing penetration tests internally and externally and managing 3rd party tests and NIST CSF reviews.
  
• Recommends security solutions or enhancements to existing security solutions to improve overall enterprise security.
  
• Researches IT security issues and industry trends to make recommendations and implement modifications for internal improvement.
  
• Designs, manages and coordinates the deployment, integration, and initial configuration of all new security solutions and of any enhancements to existing security solutions as well as decommissioning of deprecated tools.
  
• Administers, designs, configures, integrates, and maintains the company’s security architecture, including the following solutions:
  
  • Endpoint protection and response
    
  • Email security
    
  • SASE platform
    
  • Network Firewalls
    
  • File Integrity Monitoring solution
    
  • Identity Management
    
  • Privileged Access Management
    
  • Network Access Control
    
  • Microsoft 365 Security
    
  • Managed Detection and Response relationships and technical requirements
    
• Be a key resource in the security incident response planning as well as the investigation of security events including being the technical lead and subject matter expert in the Security Incident Response Team (SIRT), as needed.
  
• Regularly uses creativity and innovation to address critical issues and performs highly complex root cause analysis.
  
• Performs analysis of situation or data requiring identification, review and interpretation of highly complex factors as well as decisions as to policies, procedures and practices.
  
• Exercises discretion and independent judgment in evaluating potential approaches and solutions to critical problems and determining appropriate resolutions.
  
• Performs related duties as assigned.

EDUCATION and/or EXPERIENCE

• BS degree with a preference to be in Computer Science or Computer Engineering or equivalent combination of education and/or experience.
  
• Any or all of the following certifications are a nice to have: CISSP, CCNP.
  
• 5-7 years of experience in security roles with increasing. Previous roles may include information security analyst, application security or penetration testing, network-related security roles (firewall, intrusion detection, data loss prevention)

OTHER KNOWLEDGE, SKILLS & ABILITIES

• Strong infrastructure security skills including IDS/IPS, firewall, SIEM, server and OS hardening, malware detection, physical security, transport and at-rest encryption on file systems, DB, and other data persistence mechanisms.
  
• Excellent written and verbal communication skills - including the ability to effectively communicate security- and risk-related concepts to technical and nontechnical audiences - and strong interpersonal and collaborative skills
  
• High level of personal integrity, with the ability to handle confidential and otherwise sensitive matters professionally and with the appropriate level of judgment and maturity.
  
• Demonstrated experience in executing/delivering cross functional projects in a dynamic, fast-paced matrixed environment with a sophisticated ability to balance between security strategies and other priorities at the organizational level.