Sears is Hiring a Security Engineer III Near Hoffman, IL
Job DescriptionThe Security Engineer III ensures that security vulnerabilities are reported and remediation is documented. This position ensures vulnerabilites are remediated and by retesting andthrough assessments. Responsibilities/Skills/Experience RequirementsJob Duties/Responsibilities:
Interfaces with management and infrastructure teams to discuss discovered vulnerabilities in detail and report remediation for a resolution.
Keeps abreast of emerging threats, patterns, and trends to predict if SHC Web sites are vulnerable to the emerging threats.
Leads the evolution of standards and technology (tools, conventions) to detect and mitigate new threats.
Leads and reviews how emerging threats impact environment and the OBU risk level.
Rationalizes trade-offs between risk/reward when dealing with security threats to determine costs and effort to implement mitigating security tools.
Writes test criteria for new security product and tool evaluations and ensures the tests are completed to the test plan.
Identifies new threats and how to alert and mitigate using security tools.
Configures and tunes new security hardware and provides documentation with detail to the security team.
Mentors Security Engineer I & II
Reviews vulnerability reports, validating the findings, and determining which vulnerabilities require prompt remediation, versus the ones that can be mitigated through the normal patching process.
Writes new rules in forensics tools, and facilitates writing rules within the security application firewall, for the purpose of addressing new attack vectors against the OBU sites and infrastructure.
Performs deeper-dive analyses of network traffic, utilizing advanced functionality of security tools and other available resources to either support Infra Ops findings during incident response and production support, or as a means to identify alternate possibilities
Performs testing on new security products and tools to validate that the products meet test criteria.
Writes standard operating procedures for handing new event and attacks, which will be followed by the Infra Ops team and the OBU security team.
Manages the deployment of new security hardware in the data centers including verification of host access.
Writes training material for using security tools
Job Requirements
Bachelor's Degree in Computer Science, a related technical or scientific field, or equivalent experience
5-8 years of professional related experience
Advanced industry recognized Security certificate (CISSP or equivalent)
Ability to mentor and recruit junior developers & enforce good development practices like encapsulation, composition, continuous integration & test driven development.
Familiarity with continuous integration and build tools
Participation through completion of multiple releases of a complex software project
Industry recognized Security certificate (CSSLP or equivalent)
Working with large-scale applications, networks, and systems.
Ability to run network, application, OS scanning tools independently.
Ability to perform source ode-reviews.
Strong writing skills
Solid knowledge of network and OS configurations
Years Experience5 - 10 Years Experience Travel RequirementsNone CountryUnited States Work-In Address 1Remote Work-In CityRemote Work-In StateRemote Work-In Postal CodeRemote BusinessTransformco Corporate Job FunctionInformation Technology Employment CategoryRegular, Full-time Compensation Range$85,000-$110,000 Additional Compensation ExplanationN/A EEO/EOE FooterEqual Opportunity Employer / Disability / Vet. Posting Tags#Corporate, #Remote Company BrandTransformco Location CityHOFFMAN ESTATES