Security Engineer - Security Engineering - Data ...
Costco - issaquah, WA
Apply NowJob Description
Costco IT is responsible for the technical future of Costco Wholesale , the third largest retailer in the world with wholesale operations in fourteen countries. Despite our size and explosive international expansion, we continue to provide a family, employee centric atmosphere in which our employees thrive and succeed. As proof, Costco ranks eighth in Forbes "World's Best Employers" . This is an environment unlike anything in the high-tech world and the secret of Costco's success is its culture. The value Costco puts on its employees is well documented in articles from a variety of publishers including Bloomberg and Forbes. Our employees and our members come FIRST. Costco is well known for its generosity and community service and has won many awards for its philanthropy. The company joins with its employees to take an active role in volunteering by sponsoring many opportunities to help others. Come join the Costco Wholesale IT family . Costco IT is a dynamic, fast-paced environment, working through exciting transformation efforts. We are building the next generation retail environment where you will be surrounded by dedicated and highly professional employees. Security Engineers develop, design, implement, and integrate security systems used to safeguard enterprise assets against cyber-attack. Security Engineers drive innovation, influence delivery, and maximize performance. They deliver high-quality artifacts, develop and run security tests, and continuously tune security tools for optimization. Security Engineers identify gaps and inefficiencies and work with the business to implement solutions based on their requirements. The role of every Security Engineering team member is to support the overarching values and business goals of Costco Wholesale as they relate to meeting legal, ethical, and regulatory obligations; protecting member's and employee's privacy; and maintaining a security technology environment for our operations. This Engineer position will be a key member of the Security Engineering - Data Security team that will design, develop, and deploy tools, services, programs, and projects involving DLP technologies. Additionally, they will work with management and vendors for product consideration; perform auditing of information system activities; as a Subject Matter Expert, provide consultative services; drive innovation in technology, process, and procedure; maintain operational excellence for their tools, services, and programs; create and maintain documentation related to policies, standards and procedures; and lead and mentor team members with lesser subject matter expertise. This will involve working with many groups throughout IT both domestically and internationally. If you want to be a part of one of the worldwide BEST companies "to work for", simply apply and let your career be reimagined. ROLE • Demonstrates a comprehensive skill set with testing authorizations for multiple environments and coordinates testing with business/technical users. • Validates system configurations to ensure the safety of information systems assets and protects information systems from intentional or inadvertent access or destruction. • Designs and coordinates activities/engagements with other departments (loss prevention, legal, networking, etc). • Identifies security gaps that expose Costco to potential exploit and develop short and long term prioritized remediation to address those gaps. • Develops and executes security controls, defenses, and countermeasures to intercept and prevent internal/external data infiltrations. • Determines strategy and protocol for network behavior, analysis techniques, and tool implementation. • Identifies and resolves problems often anticipating issues before they occur or before they grow; develops and evaluates options; and implements solutions that support the business. • Provides subject matter expertise in systems security policies, standards/practices, protocols, and technologies. • Configures, deploys, maintains, and supports security tools. • Creates dashboards, configures alerts, implements and supports security software platforms, and monitors tools/apps. • Identifies opportunities for streamlining, and increasing effectiveness through continuous process improvement. • Implements practices, processes, and procedures consistent with Costco's information security policy and IT standards. • Develops and documents security events and incident handling procedures into Playbooks. • Ensures that incident documentation is comprehensive, accurate, and complete. • Triages, prioritizes, investigates, and coordinates security events and incident handling activities. • Designs, configures, and maintains various degrees of security. • Takes assessment of existing Security Engineering platforms and tools. • Creates the roadmap for addressing capability gaps, maturity improvements, and innovation. • Identifies, develops, and implements mechanisms to detect sensitive data and security incidents in order to enhance compliance with and support of security standards and procedures in place. • Mentors and develops team members. • Evaluates and hardens tooling and instrumentation to prevent cybersecurity exploits. • Performs duties necessary to assist in establishing practices and system configurations to ensure the safety of information systems assets and to protect information systems from intentional or inadvertent access or destruction. • Works with information systems custodians (i.e., department managers, user community, and systems administrators) at different levels in the organization to understand their respective security needs and assist with implementing practices and procedures consistent with Costco's Information Security Policy. • Assists with monitoring and auditing of information systems activities and systems to confirm information security policy compliance and provide management with security policy compliance assessments and system monitoring reports. • Works with stakeholders to provide security solutions that support their business requirements. • Conducts security risk assessments on new products and systems, periodic security risk assessments on existing systems, and identify and/or recommend appropriate security countermeasures and best practices. • Coordinates activities or engagements with loss prevention, interact with legal, and law enforcement as required. REQUIRED • Subject Matter Expertise with DLP capabilities such as: Data Discovery, Data Tagging, Data Classification, Data Segregation, and Data Loss Prevention. • Subject Matter Expertise with DLP capabilities covering data at rest, data in use, and data in transit. • Hands-on experience with multiple DLP capabilities including but not limited to; DLP in motion and at rest, encryption, DSPM, endpoint DLP, file integrity monitoring, SaaS security, secure browser, and etc. • Hands-on experience and security knowledge of one or more operating systems: Windows, Linux, AIX, macOS, and iSeries. • Automation and Orchestration experience with managing server and workstation infrastructure at scale. • Experience with at least one scripting/programming language: PowerShell, Shell Scripting, Python, etc. • Experience integrating disparate systems using APIs. • Experience with DLP technologies and their integration with network platforms, such as Firewalls, UTMs, and proxies. • Experience with network segmentation and/or security zones for applicable data protection according to data classification. • Good working knowledge of Authentication protocols such as: Kerberos, SAML, OAUTH, etc. • Willing to share knowledge with co-workers and to assist them in understanding technical and business topics. • Working knowledge of information systems security standards and practices (e.g., access control, system hardening, system auditing, log file monitoring, security policies, and incident handling). • Working knowledge of networking protocols, web technologies, and cloud computing. • Ability to interpret information security data and processes to identify potential compliance issues. • Ability to quickly understand complicated data flows in order to identify and validate security requirements. • Team player and willing to establish a strong positive working relationship with all areas of the business. • Ability to work effectively, independent of assistance or supervision. • Innovative, creative, and extremely responsive with a strong sense of urgency. • Ability to clearly communicate Information Security matters to executives, auditors, end-users, and engineers using appropriate language, examples, and tone. Recommended • A Bachelor's degree in Computer Science or a minimum of 8 years of information systems security or related Data Security experience. • One or more professional certifications such as Security , Network , CCNA, GSEC, CISA, or CISSP (or equivalent work experience). • Experience performing computer forensics. • Experience with ITILv2/v3 processes such as Service Support, Service Delivery, or Continual Service Improvement. • Experience with Regulatory Compliance and industry standards, such as HIPAA, SOX, and PCI. • Experience in a DevOps or DevSecOps environment. Required Documents • Cover Letter • Resume California applicants, please click here to review the Costco Applicant Privacy Notice. Pay Ranges: Level SR - $150,000 - $190,000, Bonus and Restricted Stock Unit (RSU) eligible Level Staff - $180,000 - $225,000, Bonus and Restricted Stock Unit (RSU) eligible We offer a comprehensive package of benefits including paid time off, health benefits - medical/dental/vision/hearing aid/pharmacy/behavioral health/employee assistance, health care reimbursement account, dependent care assistance plan, short-term disability and long-term disability insurance, AD&D insurance, life insurance, 401(k), stock purchase plan to eligible employees. Costco is committed to a diverse and inclusive workplace. Costco is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or any other legally protected status. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request to If hired, you will be required to provide proof of authorization to work in the United States.
Created: 2024-11-05