Security Engineer - Cloud

$150,000 - $190,000/Yr

Costco - Seattle, WA

posted about 2 months ago

Full-time - Mid Level
Seattle, WA
10,001+ employees
General Merchandise Retailers

About the position

The Security Engineer - Cloud position at Costco Wholesale focuses on enhancing the security posture of the company's cloud-based properties. The role involves developing, implementing, and integrating security systems to protect enterprise assets from cyber threats. Security Engineers are responsible for identifying security gaps, conducting security tests, and collaborating with various departments to ensure compliance with security standards. This position is part of a dynamic IT environment that emphasizes innovation and employee growth.

Responsibilities

  • Develop, design, implement, and integrate security systems to safeguard enterprise assets against cyber-attacks.
  • Analyze and administer security policies to control physical and virtual system access.
  • Identify and investigate security issues and develop solutions that address compliance requirements.
  • Implement mechanisms to detect security incidents and enhance compliance with security standards.
  • Assess business role requirements and support authorizations for system access.
  • Validate system configurations to ensure the safety of information systems assets.
  • Implement best practices in information systems security standards and practices.
  • Coordinate activities with other departments such as loss prevention and legal.
  • Identify security gaps and develop remediation strategies to address them.
  • Develop and execute security controls and countermeasures to prevent data infiltrations.
  • Provide subject matter expertise in systems security policies and technologies.
  • Configure, deploy, maintain, and support security tools.
  • Create dashboards and configure alerts for security software platforms.
  • Identify opportunities for process improvement in security operations.
  • Document security events and incident handling procedures into Playbooks.
  • Collaborate with business partners to build secure solutions that protect data.
  • Conduct security risk assessments on new and existing systems.

Requirements

  • 2+ years' experience in Security Engineering.
  • Experience in offensive security roles, such as penetration testing or ethical hacking.
  • Experience with Security Engineering of sites hosted in Public Cloud (Google, Azure).
  • Experience working with WAFs and CDNs such as Akamai or Fastly.
  • Proficiency in scripting and programming languages (e.g. Python, JS, Java, SQL).
  • Strong understanding of operating systems, network protocols, and web application security.
  • Extensive experience with security tools and frameworks (e.g. Kasada, Microsoft DFP, Bloodhound, Cobalt Strike).
  • Experience in performing code reviews to identify vulnerabilities.
  • A passion for cybersecurity and commitment to staying current with emerging threats.
  • Recommended Bachelor's/Master's degree or equivalent experience in Computer Science, Information Security, or a related field.
  • One or more professional network and security certifications such as Security+, Network+, CCNA, GSEC, CISA or CISSP.

Nice-to-haves

  • Experience performing computer forensics.
  • Familiarity with ITILv2/v3 processes such as Service Support and Service Delivery.
  • Familiarity with Regulatory Compliance and industry standards, such as HIPAA, SOX, and PCI.
  • Familiarity in a DevOps or DevSecOps environment.

Benefits

  • 401(k)
  • AD&D insurance
  • Dental insurance
  • Dependent care reimbursement
  • Disability insurance
  • Employee stock purchase plan
  • Health insurance
  • Paid time off
  • Short-term disability and long-term disability insurance
  • Life insurance

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service