Principal Security Engineer
JOB DESCRIPTION
Chewy is seeking a Principal Information Security Engineer to join an established technology team in Boston, MA, Minneapolis, MN, Dallas, TX or Plantation, FL .
At Chewy, it is our mission to be the most trusted and convenient destination for pet parents (and partners) everywhere.
We have evolved into an innovative Fortune 500 industry leader. The Information Security team’s core objective is to relentlessly protect the digital identities of Chewy’s pet parents and team members, ensuring confidentiality, availability and integrity of all data entrusted to us.
This technical leader will work across multiple teams, influencing decisions and owning several services and / or products within the Information Security organization, while developing and executing highly complex and ambiguous implementations.
They will partner with stakeholders across the enterprise on various initiatives and collaborate to deliver new features and enhancements.
They will lead across large organizations and / or business units, spanning across several teams to influence new technologies companywide.
We continue to grow and always Think Big about new innovative ideas, while consistently exploring opportunities to differentiate ourselves in the industry.
What You’ll Do :
- Analyze potential threats and vulnerabilities to our systems, applications, and processes through various security lifecycles.
- Create best practices, metrics, and mechanisms to influence design, development, testing and implementation of software functionality, scalability and security.
- Comprehensively assess the security posture of modern and scalable distributed software systems
- Evaluate business drivers and align with stakeholders to define secure architectures and success criteria for new products;
Will mentor teams on creating technical solutions for those products.
- Advise technology teams and stakeholders on how best to implement security features and enhancements.
- Ensure that technical solutions for your team follow best practices, are reliable, are easily maintainable, and are scalable under sustained load.
- Collaborate to identify, isolate, and resolve the most complex security challenges across a highly distributed operating environment.
- Perform threat modeling of applications and services to identify potential risks and provide recommendations for mitigation.
- Create architectural paradigms, instruct the organization on their use, and design mechanisms to enable tracking and adherence to security standards.
- Mentor and coach team members across organizations
What You’ll Need :
- Bachelor's degree or higher in Computer Science, Computer Information Systems, or similar; or equivalent experience
- 15+ years' combined experience in software engineering or application security architecture including the ability to perform independent analysis and owning components and services from design through implementation.
- Experience creating design patterns and technology spanning ecosystems and influencing across multiple teams.
- Experience developing and guiding secure, scalable, enterprise-level architecture and initiatives for software built on technologies including Java, Spring Boot, JSON, AngularJS, Tomcat, HTML5, CSS3, Spring MVC, SOAP / HTTP, REST, etc.
- Experience working with public cloud technologies such as AWS, Azure, or GCP
- Strong analytical and leadership abilities
- Experience transforming business visions to scalable solutions for the organization.
- Experience creating and designing architectural paradigms and guiding organization on best use and practices.
- Experience influencing stakeholders and business leaders in an org-wide capacity.
- Experience mentoring and coaching team members.
- Ability to balance multiple priorities at a given time.
- Must be team oriented and have a customer first mindset.
- Position may require travel, 10% or less.
Bonus (if applicable) :
- Experience working in e-commerce.
- Experience in PCI and SOX environments, or the NIST CSF framework
- 5+ years acting in a technical lead capacity.
- Experience leading technical teams in the development and delivery of projects
- Experience with any of the following : Terraform, Agile / Scrum, open-source technologies, continuous integration using Jenkins, Kubernetes
- Experience with Service-Oriented Architecture
- Familiarity with web application security testing methodologies and tools such as Burp, Zap, StackHawk, AppSec Insight etc.
Related Jobs
Principal Security Engineer
JOB DESCRIPTION
Chewy is seeking a Principal Information Security Engineer to join an established technology team in Boston, MA, Minneapolis, MN, Dallas, TX or Plantation, FL .
At Chewy, it is our mission to be the most trusted and convenient destination for pet parents (and partners) everywhere.
We have evolved into an innovative Fortune 500 industry leader. The Information Security team’s core objective is to relentlessly protect the digital identities of Chewy’s pet parents and team members, ensuring confidentiality, availability and integrity of all data entrusted to us.
This technical leader will work across multiple teams, influencing decisions and owning several services and / or products within the Information Security organization, while developing and executing highly complex and ambiguous implementations.
They will partner with stakeholders across the enterprise on various initiatives and collaborate to deliver new features and enhancements.
They will lead across large organizations and / or business units, spanning across several teams to influence new technologies companywide.
We continue to grow and always Think Big about new innovative ideas, while consistently exploring opportunities to differentiate ourselves in the industry.
What You’ll Do :
- Analyze potential threats and vulnerabilities to our systems, applications, and processes through various security lifecycles.
- Create best practices, metrics, and mechanisms to influence design, development, testing and implementation of software functionality, scalability and security.
- Comprehensively assess the security posture of modern and scalable distributed software systems
- Evaluate business drivers and align with stakeholders to define secure architectures and success criteria for new products;
Will mentor teams on creating technical solutions for those products.
- Advise technology teams and stakeholders on how best to implement security features and enhancements.
- Ensure that technical solutions for your team follow best practices, are reliable, are easily maintainable, and are scalable under sustained load.
- Collaborate to identify, isolate, and resolve the most complex security challenges across a highly distributed operating environment.
- Perform threat modeling of applications and services to identify potential risks and provide recommendations for mitigation.
- Create architectural paradigms, instruct the organization on their use, and design mechanisms to enable tracking and adherence to security standards.
- Mentor and coach team members across organizations
What You’ll Need :
- Bachelor's degree or higher in Computer Science, Computer Information Systems, or similar; or equivalent experience
- 15+ years' combined experience in software engineering or application security architecture including the ability to perform independent analysis and owning components and services from design through implementation.
- Experience creating design patterns and technology spanning ecosystems and influencing across multiple teams.
- Experience developing and guiding secure, scalable, enterprise-level architecture and initiatives for software built on technologies including Java, Spring Boot, JSON, AngularJS, Tomcat, HTML5, CSS3, Spring MVC, SOAP / HTTP, REST, etc.
- Experience working with public cloud technologies such as AWS, Azure, or GCP
- Strong analytical and leadership abilities
- Experience transforming business visions to scalable solutions for the organization.
- Experience creating and designing architectural paradigms and guiding organization on best use and practices.
- Experience influencing stakeholders and business leaders in an org-wide capacity.
- Experience mentoring and coaching team members.
- Ability to balance multiple priorities at a given time.
- Must be team oriented and have a customer first mindset.
- Position may require travel, 10% or less.
Bonus (if applicable) :
- Experience working in e-commerce.
- Experience in PCI and SOX environments, or the NIST CSF framework
- 5+ years acting in a technical lead capacity.
- Experience leading technical teams in the development and delivery of projects
- Experience with any of the following : Terraform, Agile / Scrum, open-source technologies, continuous integration using Jenkins, Kubernetes
- Experience with Service-Oriented Architecture
- Familiarity with web application security testing methodologies and tools such as Burp, Zap, StackHawk, AppSec Insight etc.
Transportation Security Officer
Transportation Security Officers are responsible for providing security and protection of travelers across all transportation sectors in a courteous and professional manner.
Their duties may also extend to securing high-profile events, important figures and / or anything that includes or impacts our transportation systems.
Learn more about the Transportation Security Officer (TSO) role on the .
Benefits
As a new or existing federal employee, you and your family may have access to a range of benefits. Your benefits depend on the type of position you have whether you’re a permanent, part-time, temporary or an intermittent employee.
You may be eligible for the following benefits. However, check with your agency to make sure you’re eligible under their policies.
Health insurance
Most employees are eligible for the Federal Employee Health Benefits Program (FEHB). This program offers health insurance for you, your spouse and your children under the age of 26.
It offers many different health plan choices, so you can find a plan that works best for you and your family.
Dental and vision insurance
Most employees are also eligible for the Federal Employee Dental Vision Insurance Plan (FEDVIP). FEDVIP is a separate insurance plan from FEHB.
You can sign up for dental plan, a vision plan or both types of insurance. You can choose from several different plans to cover yourself, your spouse and your unmarried, dependent children up to the age of 22.
Life insurance
Most employees are eligible for the Federal Employees’ Group Life Insurance program (FEGLI). You can choose coverage starting at one year’s salary up to more than six times your salary, and you can get coverage on the lives of your spouse and eligible children too.
Long-term care insurance
The Federal Long Term Care Insurance Program (FLTCIP) provides long-term care insurance to help pay for costs of care when you can no longer perform everyday tasks for yourself like eating, dressing and bathing, due to a chronic illness, injury, disability or aging.
If you’re eligible for the Federal Health Benefits Program, then you’re also eligible to apply for FLTCIP. Certain medical conditions, or combinations of conditions, will prevent some people from being approved for coverage.
You must apply to find out if you’re eligible to enroll.
Flexible spending accounts
The Federal Flexible Spending Account Program (FSAFEDS) is a great way to help you save money by setting aside pre-tax dollars from your paycheck to help pay for eligible healthcare or child care costs.
If you’re eligible as a new or current federal employee, then you can set up either a healthcare or dependent care flexible spending account or both.
Security Guard
Overview
Under the direction of the Assistant Director of Security (Site Supervisor) and Director of Security, this position is responsible for maintaining the security and safety of people and property by enforcing established rules and regulations.
Security Officers are employees of CastleGuard. Accordingly, they are accountable to CastleGuard for all human resources and personnel-related issues.
On operational matters security officers are accountable to the Assistant Director of Security and Director of Security.
Responsibilities
May include some or all of the following as applicable)
Maintain access control at gatehouse entry, confirm identification of either guest or resident and ask for permission from authorized party (resident / management) for access of person at gate.
As necessary, check computer file. Maintain records of entry by process servers, emergency vehicles, police units, municipal, county, state or federal vehicles and the purpose of their entry.
Watch pedestrian traffic and monitor cameras as gate operations allow. Handle gate traffic delays in accord with proscribed procedures.
- Possess knowledge of site interior so as to be able to direct guests, contractors and emergency vehicles how to get from place to place within premises.
- As applicable, perform pedestrian or vehicle patrol of assigned area. Said patrol will include but not be limited to : checking of doors and windows to proscribed locations, checking for debris, trash, damage, suspicious persons or vehicles, etc.
Patrols may also involve the use of a guard tour device in which case locations of tour points would be indicated to officer and require they be hit a pre-determined number of times each shift.
- Possess strong interpersonal and communication skills. Duties include the ability to communicate using clear and appropriate communication skills in formal and informal settings such as mediating disputes, advising of processes and rules, and enforcing policies and procedures while being polite but firm in all matters of communication.
- Write reports of daily activities and irregularities, such as equipment or property damage, theft, presence of unauthorized persons, or unusual occurrences.
- Respond to general alarms, power outages, broken water / power lines and security breaches of any kind in accordance with established post orders;
contact police or fire department in case of emergency, such as fire, storm, or crime.
- Maintain radio / telephone communications in a professional manner.
- Observe suspicious persons, assess intentions, and take action as appropriate including contacting local law enforcement as necessary.
At no time is an officer to engage anyone in a physical manner except when the officer’s personal well being is directly threatened.
- Observe, recall, and distinguish characteristics of persons, suspects, automobiles, location, property, etc. to include colors, shapes, sizes, height, weight, abnormalities, changes or differences since last observed, and other distinguishing characteristics and to be able to communicate this in a verbal and written format.
- Able to maintain composure and control when confronted with potentially hostile situations.
- Additional duties as assigned.
Qualifications
Education / Training / Certifications / Licenses :
- High school diploma or equivalency required.
- Security Officer D license from the State of Florida.
- A valid Florida driver’s license and a driving record in good standing.
Experience / Knowledge / Skills :
To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. These requirements are representative of the knowledge, skill, and / or ability required.
Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
Previous security experience preferred.
Computer literacy :
Intermediate command of computer hardware / software is required; specifically, knowledge of Microsoft Windows, Word, Excel, Power Point and Outlook.
Knowledge of ADBI software preferred.
Language requirements :
Multiple language fluency is desirable.
Travel and availability requirements :
Ability to work extended hours and weekends on as needed basis, as well as ability to quickly respond to a change in work demands.
Physical Requirements :
- Ability to lift up to 50 lbs.; may be required to stand for long periods of time in excess of 2 hours; to bend over from time to time as post requirements demand;
- to look at computer screens extensively during the course of an 8-hour shift. Communicate, receive and exchange ideas and information by means of the spoken and written word;
ability to quickly and easily navigate the property / building as required to meet the job functions.
The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of the job.
Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
Working Conditions :
The majority of the work is performed in an indoor / outdoor setting with little to moderate noise levels.
Disclaimer : This is not an all-inclusive job description. In addition, management has the right to change any portion of this job description at any time and for any reason .
Options
Sorry the Share function is not working properly at this moment. Please refresh the page and try again later. Share on your newsfeed
Create your Profile!
Not ready to apply? for general consideration.
Software Powered by iCIMS
Security Engineer
5i is in search of a qualified Network Security Engineer, who enjoys security work and possesses expertise (depth and breadth) knowledge in the security space.
The NSE will be responsible for pre-sales support and solutions architecture. They will implement their design / solution or direct an implementation team.
They will analyze problems, perform troubleshooting and incident response on systems, communicate with customers or site technicians and track problems through to resolution.
Essential job functions will include, but are not limited to the following :
Job Requirements :
Accompany account executives to help identify new opportunities and design secure client solutions
Implement internal, edge, and external security solutions with a primary goal of risk and threat reduction
Perform baseline network assessments, vulnerability tests, and penetration testing of networked environments and applications
Must be able to visualize how micro-security challenges have impact on the macro or larger picture from a networking and application perspective
Identifying and researching problems to determine the root cause of the problem
Triage or troubleshoot problems based on the standard operating procedures to include coordinating with third-party vendors, customer contacts, or other IT teams
Identify and assist in the selection of new and emerging security products and services
Perform other duties as assigned
Required Qualifications :
Hands on experience and strong understanding of switched and routed network environments
Have an expert understanding of communications protocols
Have a good understanding of multiple operating systems and environments (Microsoft, Linux variants, Embedded / real-time systems)
Have a good understanding of common identity and authentication methods (LDAP(S), Azure, ADFS)
Strong understanding and practical use and implementation of web application gateways, perimeter security, network access controls, endpoint security (AV, IDS / IPS (UTM), DLP, Malware Prevention)
Strong understanding of encryption methods and protocols
Experience managing, supporting and deploying network infrastructures
Strong ability to diagnose server or network alerts, events or issues
Experience with Disaster Recovery plans and related technologies
Knowledge of project management methodologies and techniques
Excellent time management and organizational skills, and ability to handle multiple concurrent tasks and projects with minimal supervision
Excellent problem-solving skills and ability to work under pressure
Excellent oral and written communication skills, and ability to address conflict with others constructively
Education / Experience :
BS degree in Computer Science or related field (or) High School Diploma and Equivalent Experience
3 to 5 years of experience with Fortinet, Cisco Meraki, and Virtual Environments
Security and networking certifications a plus (i.e. CISSP.) but not a requirement. we are looking for hands-on experience
Diplomatic Security: Foreign Service Security Engineering Officer
The U.S. Department of State is developing a rank-ordered list of eligible hires for a limited number of Foreign Service Security Engineering Officer (SEO) vacancies based on the needs of the Department.
Learn more about a and the .
Refer to the Benefits section for more on total compensation.
This is a 2550 Foreign Service position equivalent to the 0855 Civil Service series.
Benefits
As a new or existing federal employee, you and your family may have access to a range of benefits. Your benefits depend on the type of position you have whether you’re a permanent, part-time, temporary or an intermittent employee.
You may be eligible for the following benefits. However, check with your agency to make sure you’re eligible under their policies.
Health insurance
Most employees are eligible for the Federal Employee Health Benefits Program (FEHB). This program offers health insurance for you, your spouse and your children under the age of 26.
It offers many different health plan choices, so you can find a plan that works best for you and your family.
Dental and vision insurance
Most employees are also eligible for the Federal Employee Dental Vision Insurance Plan (FEDVIP). FEDVIP is a separate insurance plan from FEHB.
You can sign up for dental plan, a vision plan or both types of insurance. You can choose from several different plans to cover yourself, your spouse and your unmarried, dependent children up to the age of 22.
Life insurance
Most employees are eligible for the Federal Employees’ Group Life Insurance program (FEGLI). You can choose coverage starting at one year’s salary up to more than six times your salary, and you can get coverage on the lives of your spouse and eligible children too.
Long-term care insurance
The Federal Long Term Care Insurance Program (FLTCIP) provides long-term care insurance to help pay for costs of care when you can no longer perform everyday tasks for yourself like eating, dressing and bathing, due to a chronic illness, injury, disability or aging.
If you’re eligible for the Federal Health Benefits Program, then you’re also eligible to apply for FLTCIP. Certain medical conditions, or combinations of conditions, will prevent some people from being approved for coverage.
You must apply to find out if you’re eligible to enroll.
Flexible spending accounts
The Federal Flexible Spending Account Program (FSAFEDS) is a great way to help you save money by setting aside pre-tax dollars from your paycheck to help pay for eligible healthcare or child care costs.
If you’re eligible as a new or current federal employee, then you can set up either a healthcare or dependent care flexible spending account or both.