Security Engineer - Cybersecurity Engineering - Security Logging at Costco in Plano, TX

Costco IT is responsible for the technical future of Costco Wholesale, the third largest retailer in the world with wholesale operations in fourteen countries. Despite our size and explosive international expansion, we continue to provide a family, employee centric atmosphere in which our employees thrive and succeed. As proof, Costco ranks eighth in Forbes “World’s Best Employers”.

This is an environment unlike anything in the high-tech world and the secret of Costco’s success is its culture. The value Costco puts on its employees is well documented in articles from a variety of publishers including Bloomberg and Forbes. Our employees and our members come FIRST. Costco is well known for its generosity and community service and has won many awards for its philanthropy. The company joins with its employees to take an active role in volunteering by sponsoring many opportunities to help others.

Come join the Costco Wholesale IT family. Costco IT is a dynamic, fast-paced environment, working through exciting transformation efforts. We are building the next generation retail environment where you will be surrounded by dedicated and highly professional employees.

Security Engineers develop, design, implement, and integrate security systems used to safeguard enterprise assets against cyber-attack. Security Engineers drive innovation, influence delivery, and maximize performance. They deliver high quality artifacts, develop and run security tests and continuously tune security tools for optimization. Security Engineers identify gaps and inefficiencies and work with the business to implement solutions based on their requirements.

This position focuses on the development, design, implementation, and integration of security systems used to safeguard enterprise assets against cyber threats and attacks. The Staff Engineer will drive innovation, influence delivery, and maximize performance. They will deliver high quality artifacts, develop and run security test and continuously tune security tools for optimization. They will identify gaps and inefficiencies while working with the business to implement solutions based on their requirements.

If you want to be a part of one of the worldwide BEST companies “to work for”, simply apply and let your career be reimagined.

ROLE

● Provides security and technical expertise to support the development of security objects to satisfy business requirements.

● Analyzes and administers security policies to control physical and virtual system access.

● Identifies and investigates security issues and develops security solutions that address compliance requirements that can/ do impact security.

● Identifies, develops, and implements mechanisms to detect security incidents in order to enhance compliance and support of the security standards and procedures.

● Assesses business role requirements, reviews authorization roles, and supports authorizations.

● Designs and coordinates activities/engagements with other departments (loss prevention, legal, networking, etc).

● Identifies security gaps that expose Costco to potential exploit and develop short- and long-term prioritized remediation to address those gaps.

● Develops and executes security controls, defenses, and countermeasures to intercept and prevent internal/external data infiltrations.

● Determines strategy and protocol for network behavior, analysis techniques, and tool implementation.

● Identifies and resolves problems often anticipating issues before they occur or before they grow; develops and evaluates options; and implements solutions that support the business.

● Provides subject matter expertise in systems security policies, standards/practices, protocols, and technologies.

● Configures, deploys, maintains, and supports security tools.

● Protects confidentiality, integrity, and availability of information from being disclosed to unauthorized parties.

● Creates dashboards, configures alerts, implements and supports security software platforms, and monitors tools/apps.

● Identifies opportunities for streamlining, and increasing effectiveness through continuous process improvement.

● Implements practices, processes, and procedures consistent with Costco's information security policy and IT standards.

● Develops and documents security events and incident handling procedures into Playbooks.

● Ensures that incident documentation is comprehensive, accurate, and complete.

● Triages, prioritizes, investigates, and coordinates security events and incident handling activities.

● Works with internal and external auditors.

● Designs, configures and maintains various degrees of security.

● Models compliance with company policies and procedures and supports company mission, values, and standards of ethics and integrity by incorporating these into the development and implementation of business plans; using the Open Door Policy; and demonstrating and assisting others with how to apply these in executing business processes and practices; Models Costco’s culture and values while demonstrating the aptitude and capability to learn new tools and performing responsibilities with the highest standards of ethics and integrity and using that understanding to develop, design, implement and/or integrate security solutions/systems.

● Creates and runs commands and executing scripts; and communicating with stakeholders during event troubleshooting and research.

● Provides and supports the implementation of business solutions by building relationships and partnerships with key stakeholders; identifying business needs; determining and carrying out necessary processes and practices; monitoring progress and results; recognizing and capitalizing on improvement opportunities; and adapting to competing demands, organizational changes, and new responsibilities.

● Builds strong relationships with business partners and sibling teams across the Information Security organization while promoting diversity and inclusion amongst the team, creating trusting relationships with team members and business partners; SME for other engineers on collaborative teams to provide expert knowledge on an ongoing basis.

● Trains and demonstrates continual learning by staying relevant with current trends and taking advantage of courses/training available; able to apply what has learned in training classes and share knowledge with team; this also includes attending conferences, etc

● Records information in appropriate ticket/case management system to capture work performed, handling Incident Response methodologies.

● Collaborates with other cyber security team members effectively, serving as a SME for security operations for multiple technologies.

● Develops custom SIEM applications to support other SOC-related teams within the department.

● Writes custom detections to detect and alert on threat actor activity.

● Writes custom Python code to integrate applications with cloud technologies such as Event Hubs.

● Creates the roadmap for addressing logging gaps, maturity improvements and innovation.

● Works with Enterprise Monitoring team to seamlessly integrate platforms.

REQUIRED

● 5 years’ experience minimum with SIEM technologies, with at least three years of direct Splunk or Google SecOps application development.

● Familiarity with log parsing, data models and how they relate to SIEMs.

● Strong understanding of the different stages of a Cyber-Attack and how those attacks could be executed in the Costo network, aligning solutions with the MITRE ATT&CK Matrix.

● Demonstrate strong knowledge of network security architecture concepts including topology, protocols, components, and principles, network services and protocols interactions that provide network communication, knowledge of network protocols such as TCP/IP, Domain Name System (DNS), Dynamic Host Configuration (DHCP), and Directory services (LDAP).

● Expertise with SIEM and Log Analytics, SOAR, R policies and procedures.

● Demonstrate knowledge of application security controls, common vulnerabilities, and penetration testing methodologies, technical expert with analytical skills, including the gathering and analyzing of facts formulating objective conclusions modified by subjective and experience-based qualifiers with appropriate, defining problems and promoting solutions.

● Experienced with scripting in python, powershell or similar language.

● Parse and manipulate data to allow for data normalization or allow for search or easier representations for use.

● Able to carry out other duties as assigned.

● Familiarity with scripting/programming languages. Strong Python skills preferred.

● Working knowledge of developing applications in a DevOps or DevSecOps environment.

● Good working knowledge of authentication protocols such as Kerberos, SAML, and OAUTH.

● Hands-on proficiency with Microsoft Windows and GNU/Linux.

● Strong understanding of cloud computing, web technologies, and networking protocols.

● Customer-first and team-oriented mindset.

● Strong attention to detail.

We offer a comprehensive package of benefits including paid time off, health benefits - medical/dental/vision/hearing aid/pharmacy/behavioral health/employee assistance, health care reimbursement account, dependent care assistance plan, short-term disability and long-term disability insurance, AD&D insurance, life insurance, 401(k), stock purchase plan to eligible employees.

Costco is committed to a diverse and inclusive workplace. Costco is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or any other legally protected status. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request to IT-Recruiting@costco.com

If hired, you will be required to provide proof of authorization to work in the United States.

Recommended