Overview
On Site
USD 91,400.00 per year
Full Time
Skills
Adobe Fireworks
Value Engineering
Operating Systems
Wireless Networking
Payment Card Industry
Policies and Procedures
Mentorship
Regulatory Compliance
PCI DSS
Sarbanes-Oxley
Gramm-Leach-Bliley Act
Infrastructure Architecture
Network
Web Security
Vulnerability Management
Testing
Decision-making
Leadership
Facilitation
Collaboration
Communication
CISSP
Certified Ethical Hacker
Security+
Information Security
System Integration Testing
Leadership Development
Legal
Finance
Distribution
Job Details
Job Description
Be part of an amazing story.
Macy's is more than just a store. We're a story. One that's captured the hearts and minds of America for more than 160 years. A story about innovations and traditions...about inspiring stores and irresistible products...about the excitement of the Macy's 4th of July Fireworks, and the wonder of the Thanksgiving Day Parade. We've been part of memorable moments and milestones for countless customers and colleagues. Those stories are part of what makes this such a special place to work.
Job Overview
The Senior Vulnerability Engineer is a dedicated and detailed-oriented individual in Information Security Vulnerability Management. This hands-on role involves conducting vulnerability assessments on complex applications, operating systems, and wired and wireless networks. In response to an ever-changing threat landscape, they establish a proactive program to assess Macy's resilience against real-world tactics, techniques, and procedures (TTPs).
What You Will Do
Skills You Will Need
Regulatory Compliance: Strong knowledge of regulatory compliance requirements, including PCI-DSS, SOX, and GLBA.
Security Infrastructure: Advanced knowledge in security infrastructure design and architecture for both new implementations and existing infrastructure.
Enterprise Security: Experience in designing and implementing enterprise-wide security strategies, policies, and standards.
Threat Protection: Experience protecting large enterprise environments from internal and external attacks.
Vulnerability Management: Strong understanding of network, physical, application, and web security as it relates to vulnerability management. Advanced knowledge of common vulnerabilities, testing approaches, and remediation strategies.
Security Technologies: Expert understanding of current and emerging security technologies, defense strategies, and industry standards. Ability to determine and recommend security-related products and activities, influencing decision-making processes.
Interpersonal Skills: Advanced leadership, facilitation, and interpersonal skills to work across functional lines and at various levels.
Communication: Excellent written and verbal communication skills, with the ability to read, write, and interpret instructional documents.
Certifications: One or more certifications such as CISSP, CEH, Security+, etc.
Who You Are
What We Can Offer You
Join a team where work is as rewarding as it is fun! We offer a dynamic, inclusive environment with competitive pay and benefits. Enjoy comprehensive health and wellness coverage and a 401(k) match to invest in your future. Prioritize your well-being with paid time off and eight paid holidays. Grow your career with continuous learning and leadership development. Plus, build community by joining one of our Colleague Resource Groups and make a difference through our volunteer opportunities.
Some additional benefits we offer include:
Access the full menu of benefits offerings here.
About Us
This is a great time to join Macy's! Whether you're helping a customer find the perfect gift, streamlining operations in one of our distribution centers, enhancing our online shopping experience, buying in-style and on-trend merchandise to outfit our customers, or designing a balloon for the Thanksgiving Day Parade, we offer unique opportunities to be part of some of the most memorable moments in people's lives.
Join us and help write the next chapter in our story - Apply Today!
This job description is not all-inclusive. Macy's, Inc. reserves the right to amend this job description at any time. Macy's, Inc. is an Equal Opportunity Employer, committed to a diverse and inclusive work environment.
LEGALRE00
TECH00
Be part of an amazing story.
Macy's is more than just a store. We're a story. One that's captured the hearts and minds of America for more than 160 years. A story about innovations and traditions...about inspiring stores and irresistible products...about the excitement of the Macy's 4th of July Fireworks, and the wonder of the Thanksgiving Day Parade. We've been part of memorable moments and milestones for countless customers and colleagues. Those stories are part of what makes this such a special place to work.
Job Overview
The Senior Vulnerability Engineer is a dedicated and detailed-oriented individual in Information Security Vulnerability Management. This hands-on role involves conducting vulnerability assessments on complex applications, operating systems, and wired and wireless networks. In response to an ever-changing threat landscape, they establish a proactive program to assess Macy's resilience against real-world tactics, techniques, and procedures (TTPs).
What You Will Do
- Establish a risk-based approach for evaluating and prioritizing new and emerging threats.
- Stay current on emerging technology trends and the threat landscape, providing subject matter knowledge on specific adversarial threats and risks to assist with mitigation strategies.
- Understanding and knowledge of PCI requirements relating to vulnerability management.
- Participate in reviewing and developing security strategies, best practices, policies, and procedures.
- Provide leadership, share knowledge, and mentor team members.
- Build working relationships with Macy's TMRC, leadership, and third parties to identify top threats.
- Communicate identified vulnerabilities and their potential impact to relevant stakeholders, and collaborate across teams on remediation.
- Document detailed findings, analysis, and recommendations.
- Foster an environment of acceptance and respect that strengthens relationships, and ensures authentic connections with colleagues, customers, and communities
Skills You Will Need
Regulatory Compliance: Strong knowledge of regulatory compliance requirements, including PCI-DSS, SOX, and GLBA.
Security Infrastructure: Advanced knowledge in security infrastructure design and architecture for both new implementations and existing infrastructure.
Enterprise Security: Experience in designing and implementing enterprise-wide security strategies, policies, and standards.
Threat Protection: Experience protecting large enterprise environments from internal and external attacks.
Vulnerability Management: Strong understanding of network, physical, application, and web security as it relates to vulnerability management. Advanced knowledge of common vulnerabilities, testing approaches, and remediation strategies.
Security Technologies: Expert understanding of current and emerging security technologies, defense strategies, and industry standards. Ability to determine and recommend security-related products and activities, influencing decision-making processes.
Interpersonal Skills: Advanced leadership, facilitation, and interpersonal skills to work across functional lines and at various levels.
Communication: Excellent written and verbal communication skills, with the ability to read, write, and interpret instructional documents.
Certifications: One or more certifications such as CISSP, CEH, Security+, etc.
Who You Are
- Candidates with a bachelor's degree or equivalent work experience in a related field are encouraged to apply. 6-8 years of experience in Information Security or an equivalent combination of education and experience.
- Regularly required to sit, talk, hear; use hands/fingers to touch, handle, and feel. Occasionally required to move about the workplace and reach with hands and arms. Requires close vision.
- Able to work a flexible schedule based on department and company needs.
What We Can Offer You
Join a team where work is as rewarding as it is fun! We offer a dynamic, inclusive environment with competitive pay and benefits. Enjoy comprehensive health and wellness coverage and a 401(k) match to invest in your future. Prioritize your well-being with paid time off and eight paid holidays. Grow your career with continuous learning and leadership development. Plus, build community by joining one of our Colleague Resource Groups and make a difference through our volunteer opportunities.
Some additional benefits we offer include:
- Merchandise discounts
- Performance-based incentives
- Annual merit review
- Employee Assistance Program with mental health counseling and legal/financial advice
- Tuition reimbursement
Access the full menu of benefits offerings here.
About Us
This is a great time to join Macy's! Whether you're helping a customer find the perfect gift, streamlining operations in one of our distribution centers, enhancing our online shopping experience, buying in-style and on-trend merchandise to outfit our customers, or designing a balloon for the Thanksgiving Day Parade, we offer unique opportunities to be part of some of the most memorable moments in people's lives.
Join us and help write the next chapter in our story - Apply Today!
This job description is not all-inclusive. Macy's, Inc. reserves the right to amend this job description at any time. Macy's, Inc. is an Equal Opportunity Employer, committed to a diverse and inclusive work environment.
LEGALRE00
TECH00
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.