SPS CommerceRemote
Senior Security Engineer
United States of America
Full Time
2 hours ago
$108,000 - $168,000 USD
H1B Sponsor Likely
Key skills
PythonAIClaudeAgenticAWSAzureGCPCommunicationOWASP
About this role
SPS Commerce is a leading provider of cloud-based supply chain management solutions, serving a global network of retail trading partners. They are hiring a Senior Security Engineer to join their Cyber Defense team, focusing on developing and delivering secure services to protect the business and its customers from security threats.
Responsibilities:
- Develop and maintain Cyber Defense solutions and services
- Contribute to solution design, planning, and roadmaps to deliver scaled quality Cyber Defense outcomes across technology and product delivery
- Streamline security processes and enhance efficiency, including creating automation and Agentic solutions to orchestrate security-related processes
- Collaborate with internal teams to identify security requirements and implement solutions that meet business needs while adhering to industry best practices
- Help implement the security program strategic plan that improves program maturity and compliance
- Participate in development and evaluation of security toolsets to develop and enhance SecOps capability
- Develop, manage, and consult on the technical architecture for enterprise security controls
- Partner with business and technology operations groups to maintain the security threat monitoring infrastructure and tools (perimeter controls, intrusion detection / protection devices, vulnerability scanning tools, security event correlation tools, content surveillance and filtering devices)
- Design, deploy, and maintain CrowdStrike platform to enhance the organization's security posture
- Configure and manage SIEM (Security Information and Event Management) systems to monitor, detect, and respond to security incidents effectively
- Conduct regular assessments of security tools and technologies to ensure they remain effectively aligned with evolving security threats and emerging technologies
- Provide technical expertise and support to troubleshoot security tool-related issues
- Stay updated on emerging security trends, vulnerabilities, and threat actors to proactively enhance the organization's security defenses
Requirements:
- 5 years of experience with bachelor's degree in related business or technical areas; or 8 years of experience without a degree
- Equivalent work experiences include security engineering, architecture or development
- Experience designing and implementing security standards, specifications, and procedures
- Experience in providing technical security guidance to technical and non-technical audiences
- Experience with compliance standards from SOC 2, SOX, ISO-27001, HIPAA, and PCI-DSS
- Strong proficiency in security tools and platforms such as CrowdStrike
- Strong automation background, preferably experience with Tines
- Experience with SIEM platforms, including configuration, management, and customization
- Excellent problem-solving and data skills, ability to troubleshoot complex technical issues
- Cloud Native Security tooling within AWS, Azure and GCP
- Adaptability: Navigates ambiguity, reprioritizes effectively, and maintains momentum in dynamic environments
- Proficiency in scripting and automation, with a focus on Python
- Proficiency with Infrastructure as Code
- Proficiency with Claude, Desktop, Code, configurations or other AI
- Strong communication skills and the ability to collaborate effectively with cross-functional teams
- System configuration and architecture experience
- Strong knowledge of industry accepted information security best practices, standards, and policies such as NIST CSF, OWASP, CIS, MITRE ATT@CK, etc
- Proven ability to manage information security service and operation through effective management of resources
- Demonstrated experience and understanding of business security and compliance requirements and ability to translate into well-engineered & integrated business solutions
- Demonstrated ability to take initiative and accountability for achieving results
- Driven to understand & appropriately respond to customers' business needs
- Security Certifications & Licenses: One or more industry certification - CISSP, CISM, CISA, CCFE, GIAC, CCIE, CCSP, ABCP, MBCP, ISA, PCIP, CEH
- Actively participates and contributes to the security community