Principal Security Engineer / Architect (cloud/GCP, networking, IAM)(Remote Or Hybrid)
$144,400 - $311,900/Yr
Target - Brooklyn Park, MN
posted 14 days ago
Full-time - Principal
Remote - Brooklyn Park, MN
General Merchandise Retailers
About the position
The Principal Security Engineer/Architect at Target is responsible for ensuring that systems are designed and built securely, collaborating with technical and leadership teams across Target Tech. This role involves identifying security risks, developing mitigation strategies, and integrating security functions into system architecture. The position requires a deep understanding of security risks, controls, and standards, along with exceptional communication skills to foster collaboration across the enterprise.
Responsibilities
- Collaborate with system designers to integrate security requirements into the design phase of IT systems
- Develop and maintain security architecture documentation, including security models, frameworks, and diagrams
- Ensure that security architecture aligns with the organization's business objectives and regulatory requirements
- Provide expertise on information security for complex systems and applications in cloud and on-prem environments
- Understand security risks to identify potential vulnerabilities and threats
- Develop risk mitigation strategies and recommend appropriate security controls
- Design and implement security solutions, including firewalls, encryption protocols, and access control mechanisms
- Collaborate with development and operations teams to ensure secure creation and deployment of IT systems
- Provide guidance on secure coding practices
- Conduct full-stack architecture reviews of products and platforms
- Design security reference architectures and create implementation/configuration guides
- Collaborate with engineering teams to perform advanced security analysis on complex cloud systems, identifying gaps while contributing to design solutions and security requirements
Requirements
- 4 year degree or equivalent work experience
- 10+ years of hands-on technology experience with extensive knowledge of Cybersecurity domains including: Information Protection, Cloud Security, Networking Security, IAM, Automation and SIEM
- Language agnostic code/programmer comfortable in many languages across different platforms, i.e.: Java, Python, Go, Scala, etc.
- Proven history of effectively utilizing a variety of security tools and technologies across diverse environments
- Good understanding of security management workflows in large enterprise organizations and complex environments
- In-depth knowledge of security frameworks, standards, and best practices (i.e., NIST, ISO/IEC 27001)
- Strong understanding of network security, cryptography, and secure software development
- Experience with firewalls, IDS/IPS, SIEM and DLP
- Expertise in containerization technologies and tools (i.e. Kubernetes)
- Solid understanding of AI and ML fundamentals
- Excellent analytical, problem-solving and communication skills with strong presentation abilities
Nice-to-haves
- Demonstrated curiosity that seeks out cross-team collaboration opportunities
- Stays relevant with latest security technologies by self-directed learning
Benefits
- Comprehensive health benefits including medical, vision, dental, and life insurance
- 401(k) plan
- Employee discount
- Short term disability
- Long term disability
- Paid sick leave
- Paid national holidays
- Paid vacation
