Macys: Security Engineer Lead

About: Macys is proudly Americas Department Store.

For more than 160 years, Macys has served generations at every stage of their lives.

Customers come to us for fashion, value and celebration.

Macys is also known for giving back to our communities.

Now is an exciting time to join Macy’s.

The face of retail is changing, and change requires innovation.

With endless opportunities, you can begin anywhere and go everywhere at Macy’s.

Join a team of colleagues who are committed to excellence and leadership development.

We want talent like you.

Job Overview: The Lead, Security Engineer makes decisions based on operational status and project requirements and will make recommendations to management based on actions taken, current status and potential exposure and/or risks.

The Engineer will continue to be engaged with management to provide updates and status to help clarify any decision that is needed to be made about a current security risk exposure or operational stability.

Essential Functions: Work with various Ecommerce Support teams to understand their requirements and support them as needed Work with Security Architecture & Ecommerce Support teamsto determine solutions and propose plans to implement them Support maintenance and upgrade of solutions that protect enterprise systems, applications and data by participating in established policies, practices and change management tools Collaborate with managers, project managers, architects and other technical leads to resource projects and manage the communication across all teams involved Assist clients with the identification and evaluation of security gap, and help translate them into functional specifications; focusing on the infrastructure and business applications Collaborates with other technical leads (Network, Server, and Application), field services technicians, project managers and data center operations and technical subject matter specialists to integrate security controls into a cohesive architecture that sufficiently mitigates risk to the company.

Engineer must have critical thinking skill Mentors and coaches other Security Analysts to provide guidance and expertise in their growth Work closely with managed service providers, delivery, vulnerability and incident response teams Participate in on call and change rotation Consistently demonstrates regular, dependable attendance and punctuality.

Regular, dependable attendance & punctuality Education/Experience: Bachelor’s Degree and 5-7 years of experience or an equivalent combination of education and experience in Information Security or Information Technology Excellent written and verbal communication skills.

Ability to read, write, and interpret instructional documents such as reports and procedure manuals.

Writes clear problem descriptions and instructions to aid other individuals or groups in problem duplication and resolution.

Ability to create detailed and/or focused documentation, reports or standard procedures.

Must be able to work independently but under minimal supervision.

Knowledge of network security concepts and technologies, including but not limited to firewalls, IDS / IPS, proxy servers, access control systems and web application firewalls Demonstrated working knowledge of Cloud security controls & best practices Ability to understand, analyze and correlate technical vulnerabilities and implement counter-measures to mitigate them Knowledge of TCP/IP, HTTP, HTTPS, cookies, authentication, web servers and SSL/encryption Understanding of web applications authentication, session management, and form submission processes, etc An understanding of a wide array of server grade applications to include DNS, SMTP, IIS, Apache, LDAP, SQL, etc Remediation experience with patching and/or mitigation for findings for all of the aforementioned testing / assessments Risk assessment experience with computer systems and applications.

Best practice and architecture experience with computer systems and applications Knowledge of network diagnostic and troubleshooting tools Cisco, F5, F5 ASM, Checkpoint and general networking with several vendors is preferred Proven ability to manage projects and handle conflicting responsibilities Have an understanding and working knowledge of regulatory and audit mandates to ensure environments meet PCI, FFIEC, SOX and corporate standards Ability to work a flexible schedule based on department and store/company needs.

TECH00