Lead Engineer - Cyber Visibility UI Development

The pay range is $132,000.00 - $238,000.00

Pay is based on several factors which vary based on position. These include labor markets and in some instances may include education, work experience and certifications. In addition to your pay, Target cares about and invests in you as a team member, so that you can take care of yourself and your family. Target offers eligible team members and their dependents comprehensive health benefits and programs, which may include medical, vision, dental, life insurance and more, to help you and your family take care of your whole selves. Other benefits for eligible team members include 401(k), employee discount, short term disability, long term disability, paid sick leave, paid national holidays, and paid vacation. Find competitive benefits from financial and education to well-being and beyond at ;br>
About Us:

Working at Target means helping all families discover the joy of everyday life. We bring that vision to life through our values and culture. Learn more about Target here.

As a Lead Engineer, you will:

• Design, develop and maintain an established SIEM platform spanning 1 frontend application and 7 backend services by deploying durable interfaces using modern patterns including React & TypeScript.
• Mentor junior and senior engineers through design reviews, hands on pair programming, and collaborative problem solving.
• Own and evolve the technical architecture of the SIEM platform across both the established full-stack application AND the in-flight integrations and feature sets built to support Google SecOps.
• Operate with a high degree of autonomy, consistently delivering outcomes with minimal oversight.
• Use technical decision authority as you partner with cross-functional teams to design, build, and deliver new or migrated security detection features and tools on Google SecOps, leading design reviews and resolving ambiguity from conflicting requirements through the process.
• Develop and support full-stack application features, including backend APIs (e.g., Node.js/Express), integrations with Google SecOps, and services that power detection and investigation workflows.
• Drive alignment both upstream and downstream as you partner with Threat Detection & Operations, Cyber Threat Intelligence, CSIRT, and platform engineering teams to design and improve detection and investigation capabilities.
• Own reliability, scalability and performance targets as you troubleshoot and resolve issues across existing systems while participating in on-call rotations and contributing to improvements in observability, resilience, and operational tooling.
• Develop and maintain state management, data-fetching, and asynchronous workflows (e.g., background processing, job scheduling) to support complex user interactions and long-running operations.
• Write high-quality, maintainable code and participate in code reviews and testing practices to uphold engineering standards and facilitate knowledge-share.
• Contribute to CI/CD pipelines and mechanisms (e.g., Docker Swarm), supporting reliable and repeatable releases.
• Use telemetry, user feedback, and platform metrics to improve application performance, usability, and reliability.

In this role, you are a hands-on technical contributor responsible for designing, building, and operating critical SIEM application experiences that power security investigations, IOC workflows, and detection authoring at Target. While remaining a deeply hands-on engineer, you are accountable for the technical direction, system health, and overall effectiveness of the SIEM Platform, including its integrations with SecOps and the engineers contributing to its success. You work across the full stack writing clean, scalable, and maintainable code while optimizing for performance and reliability.

You develop React/TypeScript interfaces alongside Node.js/Express APIs, asynchronous processing (e.g., Temporal/Bull), and integrations with Google SecOps and internal systems-while building a deep understanding of analyst workflows, system architecture, and failure modes. You troubleshoot issues across the application stack, from user-facing experiences through APIs, background jobs, and external dependencies, driving problems from signal to root cause and implementing durable fixes through improved observability, testing, and automation. You independently deliver features from design through production while operating within CI/CD pipelines and containerized environments. You are expected to navigate and improve a large, evolving codebase, consistently produce high-quality, well-reviewed code, and collaborate closely with partner teams to align on priorities, unblock delivery, and continuously improve the reliability, usability, and effectiveness of the SIEM platform.

Core responsibilities of this job are described within this job description. Job duties may change at any time due to business needs.

About you:

• 4-year degree in Computer Science (or related field) or equivalent practical experience.
• 8+ years of overall software engineering experience, with a focus on building full-stack web applications.
• 3+ years of experience building modern frontend applications with React or NextJS using TypeScript, including state management, form validation, and component library (e.g., MUI).
• 3+ year of experience building backend services using Node.js and Express, including API design, Express Middleware, ORMs (e.g., Sequelize), and job scheduler framework (e.g., Bull or Temporal)
• 3+ years of experience with relational databases (e.g., MySQL, PostgreSQL).
• Demonstrated ability to define and evolve system architecture to bring cross-team initiatives from concept to production.
• Experience working in large, multi-repository codebases and applying testing practices (e.g., Jest, Vitest or similar).
• Experience with containerized applications and modern CI/CD pipelines (e.g., Docker, Docker Swarm, or similar).
• Working knowledge of observability practices (logging, metrics, tracing, APM)
• Ability to troubleshoot and debug issues across the stack in production environments, identifying root causes and implementing solutions.
• Experience supporting applications in production, including monitoring, incident response, and on-call participation.
• Demonstrated code quality practices, including writing maintainable code and participating in pull request reviews.

This position will operate as a Hybrid/Flex for Your Day work arrangement based on Target's needs. A Hybrid/Flex for Your Day work arrangement means the team member's core role will need to be performed both onsite at the Target HQ MN location the role is assigned to and virtually, depending upon what your role, team and tasks require for that day. Work duties cannot be performed outside of the country of the primary work location, unless otherwise prescribed by Target. Click here if you are curious to learn more about Minnesota.

Benefits Eligibility
Please paste this url into your preferred browser to learn about benefits eligibility for this role: _E

Americans with Disabilities Act (ADA)

In compliance with state and federal laws, Target will make reasonable accommodations for applicants with disabilities. If a reasonable accommodation is needed to participate in the job application or interview process, please reach out to Non-accommodation-related requests, such as application follow-ups or technical issues, will not be addressed through this channel.