TJX Principal Security Engineer (REMOTE) in Marlborough, Massachusetts
Principal Security Engineer (REMOTE)Apply now »
Start apply with LinkedIn
Start apply with Xing
- Please wait...
Date:Oct 14, 2020
Location:Marlborough, MA, US
Company:TJX Companies, Inc.
Discovery is at the core of everything we do – whether it’s a great value, incredible style, or building long-lasting partnerships with people around the world. That’s what makes TJX different. You can find it all across our brands: TJ Maxx, Marshalls, HomeGoods, Sierra, and Homesense. Every one of our brands has one thing in common: environments that are always changing. That’s just how we like it. Every day is an opportunity to discover something new about our business, our partnerships, and even about yourself.
Come discover what different can mean for you.
Posting Notes: Nationwide - Option to work REMOTE Marlborough || MA
PRINCIPAL SECURITY ENGINEER| (REMOTE OPPORTUNITY)
We are looking for aPrincipal Security Engineerto be the conduit between the architecture and the operations teams. This position is on the Security Delivery & Operations Team and works extensively with the Architecture and Operations teams to design, implement, document (run books), and support new security technologies.
Want to make an impact?
The successful individual will have extensive security experience across multiple security domains including: Identity and Access Management, Infrastructure Protection, Data Protection, Threat/Vulnerability Management, Auditing/Logging, etc. Additionally, this role will provide Security Consulting services to the IT project teams to ensure that they comply with Info Sec policies and Standards. This person will be part of the Solution Delivery lifecycle, ensuring appropriate security deliverables have been addressed as part of the overall design.
Collaborate with Infrastructure, Architecture, and other IT Subject Matter Experts (SME) to ensure security elements are addressed in the overall business and IT solutions, align and assess impact of proposed solution on existing operations so that appropriate technical, business, and operational risks can be mitigated and accepted;
Overall Solution Design including but not limited to: proof of concept, detailed design, installation and/or configuration, integration, security, data and information flow, exception handling, operational readiness, scalability and performance, infrastructure needs, documentation and runbooks, testing, along with some level 3/4 support;
Development of required Technical Design documentation in support of the total scope definition and review the complete design with all stakeholders;
Discovery and solution estimates, scope, and ongoing validation (including any scope changes) of delivering project technical solutions including collaboration with internal and vendor resources;
Validate that the solution meets Enterprise Security standards and overall reference architecture fit analysis;
Ensure optimal user experience is built in to the design from the start, and validate throughout implementation and beyond;
Follow and ensure defined SDLC process properly followed by all resources involved in development cycle;
Constantly learning & staying apprised of emerging security technologies.
Solid understanding of ISO 270001 and NIST Security Frameworks;
Experience in performing security vulnerability assessments and ability to successfully navigate PCI and SOX regulations;
A robust understanding of IAM, role based access controls, network security, and means of isolating environments. Experience implementing certificate and key management systems to enable encryption on cloud platforms is also required;
Familiarity with various network controls including proxies and reverse proxies, network and application load balancers, stateful and deep packet inspection and knowledge of how to design environments to protect against malicious accidental threats, such as data leakage and denial of service attacks;
Experience defining unit and functional tests, security checks, validators, and integrating them into an SDLC framework and DevOps practices. Ability to develop secure cloud based infrastructure as code;
Extensive security experience in DevOps and Cloud based platforms (AWS, Azure, Oracle, IBM, or Rackspace);
Knowledge of Linux and Windows administration and OS hardening and familiarity with configuration management;
Experience logging management and monitoring tools, including cloud native tools. Should be able to aggregate, correlate, and report on logs and metrics, use them for detecting anomalous or risky behavior, and triggering automated actions or alerts;
Partner with product stakeholders to create, update, and implement Information Security designs, standards and procedures;
Evaluate and recommend new and emerging security products and technologies;
Experience with Configuration Management tools (Ansible preferred). Must display a strong affinity for automating technical solutions.
Good knowledge of a scripting language (Perl, Python, Ruby, etc.).
Technical Support – Resolving complex issues and implementation of changes and enhancements to the overall systems and processes identified above.
Additional valuable experience:
CISSP or equivalent security accreditation;
Certification on any one of the following cloud platforms: AWS, Azure, Oracle, IBM, or Rackspace;
Understanding of security and authentication protocols, including TLS, SSH, OAuth, SAML, Kerberos;
Familiarity with common exploits, such as XSS, SQL Injection, DOS, man-in-the-middle, and buffer overflows, as well as how to detect them and protect against them, is a strong plus.
BS/BA in Computer Science, Engineering, or Technology related field, or equivalent industry experience
10+ years of overall IT experience.
5+ years of experience in technology and systems design roles and implementation of systems supporting retail and/or corporate business operations
Discover Different at TJX means opportunity, teamwork, and career growth. That’s why working here is so much more than a job. When you’re a part of our TJX family, you have the full support of a diverse, close-knit group of people that work together to deliver the best value and style in the business. Our inventory is always changing and our approach is continually evolving, which means every day is another chance to Discover Different.
We care about our culture, but we also prioritize the tangible stuff – competitive pay, great benefits, and a great group of people. We consider all applicants for employment without regard to race, color, religion, gender, sexual orientation, national origin, age, disability, gender identity and expression, marital or military status. We also provide reasonable accommodations to qualified individuals with disabilities in accordance with the Americans with Disabilities Act and applicable state and local law.
Posting Notes: Nationwide - Option to work REMOTE Marlborough || MA
Nearest Major Market:BostonJob Segment:Corporate Security, Engineer, Consulting, Database, Security, Engineering, Technology