Senior Information Security Engineer

Overview

REI Co-op is united around discovering, building and celebrating better ways of working in this world, all so that folks can find and pursue a love of the outdoors. When you work for the co-op, you do your best work with the support to live your best life. And you play a part in shaping the future of the outdoors, for people and our planet.

This position is responsible for maintaining the confidentiality, integrity and availability of information assets by assisting in the design, development and deployment of a broad spectrum of security services. As a senior information security engineer, you will partner with architects, business and IT teams to ensure that security is applied to the technology platforms and information within the organization in accordance with established standards and policies. Models and acts in accordance with REI’s guiding values and mission.

Responsibilities And Qualifications

• Owns the development, planning and implementation of a variety of platforms including Cloud Security/CNAPP, CI/CD Security, SIEMs , IDS/IPS, firewalls, Bot Protection, WAFs, anti-malware, EDR, DDOS services, host and container configuration management, vulnerability scanning, penetration testing, , and more.
• Provides analytics and reporting from tool-based telemetry
• Builds resilient security platforms/services with strong monitoring and alerting and encouraging automation for operational processes and orchestrating workflows
• Partners with engineering, program management and operations personnel within the service delivery organization to implement changes to process and technology.
• Partners with Security Architecture to ensure platform goals and security solutions are designed to meet business strategy and needs
• Participates in the creation of roadmaps for current security capabilities
• Analyzes threats and current security controls to identify gaps in current defensive posture.
• Participates in security incident response activities.
• Ensures documentation for managed platforms/services are detailed, thorough, and kept current.
• Participates in rotating after hours on-call schedule
• Helps develop communications and actively promote related campaigns for information security awareness.
• Keeps current on organization's business practice, technology, security issues and legislation that impact the
  
  
  

company’s security policy.

• Makes recommendations to leadership on improvements to be made to existing security controls
• Mentors junior engineers on the team.
  
  
  

Required Skills & Experience

• BS or BA in Computer Science, Information Systems, Information Technology or a related field or equivalent experience
• 3 years’ professional experience in cloud-based or online services security engineering, or service engineering.
• Strong written and oral communication skills; can effectively communicate technical concepts
• 1 years’ experience with at least one scripting or programming language (Python, Go, Ruby, etc.)
• 1 years’ experience with deployment orchestration, automation, and security configuration management (Jenkins, Puppet, Chef, CloudFormation, Terraform, Ansible
• Expert-level working knowledge and deep understanding of cyber security in at least two or more of the following disciplines: network engineering, CI/CD automation security, container security, endpoint security, penetration testing, application security, or cloud security.
• Actively participates and collaborates with others on one's own team and across REI for the achievement of business goals.
• Flexible in one's viewpoints and positions in order to support the direction taken by others at REI.
• Uses business knowledge, innovative thinking, and sound judgment in the solution of problems or the pursuit of business opportunities.
• Consolidates information from various sources including feedback from others to reach sound decisions.
• Considers the ultimate impact of decisions and actions on internal and external customers.
• Works smart by setting effective work goals, establishing priorities, and planning well in order to produce quality work.
• Executes effectively by using resources efficiently, meeting deadlines, and keeping others informed of work plans and progress toward goals.
• Clearly conveys and accurately receives information by a variety of methods and in various situations.
• Builds rapport different people inside and outside the organization.
• Acts upon opportunities and involves and influences others in the accomplishment of worthwhile organizational goals.
• Challenges the status quo, champions change and influences others to change.
  
  
  

Preferred Qualifications

• 1 years’ experience managing vendor relationships
• Experience with threat modeling (ASVS 4, MITRE ATT&CK, or other)
• Current holder of at least one recognized security-relevant certification (i.e., CISSP)
  
  
  

Closing

At REI, we believe the outdoors is for all. We are committed to becoming a fully inclusive, anti-racist, multicultural organization. We know that there's strength in our diversity - that each employee brings unique skills, experiences, and perspectives. Every day you are driving change, fostering a culture of respect, and knowing you're backed by benefits that support your whole life. To work towards this commitment and fulfill our brand promise of inspiring and enabling a life outside for everyone, we seek employees who demonstrate different ways of working, create a sense of belonging, and actively listen and learn.

Pay Transparency

We are committed to practices that promote pay equity and transparency. As required by applicable Pay Transparency laws, REI provides a range of compensation for roles that may be hired in locations under these requirements. Factors that may be used to determine your actual salary may include a wide array of factors, including: your specific skills and experience, geographic location or other relevant factors.

REI offers all regular employees a generous employee discount, access to health benefits, a retirement savings plan and accrued time off. Click here for a detailed overview of benefits plans by employee profile.

Pay Range

$127,600.00 - $204,100.00 per year