|Job company||Tiffany & Co.|
|Job specification:||Job Description
Tiffany & Co. is currently seeking an IT Security Engineer. This position will be a key member of a collaborative team of engineers focused on solving the complex security challenges of global luxury retail organization. Designing and building security solutions, working with vendors and IT colleagues, overseeing projects and enhancements and managing security product lifecycles are all part of the day-to-day routine.
The Tiffany Security Engineering Team manages a comprehensive list of security products and is focused on setting the highest standard of team performance. This team works as an open and transparent group where every member is provided an opportunity for input and knowledge sharing. A Security Engineer on this team will have the opportunity to influence the utility and functionality of many different products and processes and will be well supported by internal IT teams (such as IT Service Desk, Technical Services, Infrastructure, Operations, etc.) and by external partners and vendors.
This position is an excellent opportunity for a mid-level security professional with a passion for protecting an amazing brand and an appetite for learning about and experimenting with new technologies and techniques.
Develop and manage enhancements that will improve the capabilities of tools in the current Information Security portfolio
Manage security programs, maintain architectural diagrams, and develop product roadmaps, process flows and technical procedures
Identify strategic opportunities for projects that will improve the security posture of the organization through new tool implementations, process improvements, or changes to existing system configurations
Collaborate with other engineers and technology specialists from Security Operations, Networking, Server, Desktop and other IT teams to identify solutions to security challenges
Provide training and support for Security Operations personnel on the day-to-day usage of security tools and processes
Engage support vendors to address production problems, support security incident response plans and conduct root cause analysis
To Be Qualified For This Position, One Must Possess a College Degree And 4 To 6 Years Of Relevant Experience In a Large Enterprise Environment (5000 Employees Or More With 500 Servers Or More) While Performing The Following
Architecture and administration of an enterprise next generation endpoint protection platform (EPP) solution to include both anti-virus (AV) and endpoint detection and response (EDR) capabilities. Candidate should have a strong knowledge related to host intrusion prevention system (HIPS), Data Loss Prevention (DLP), indicators of compromise (IOCs), malware sandboxing, file reputation, endpoint web filtering control, application control, native drive encryption, drive and removable media encryption.
The candidate will be required to execute the following tasks:
Perform daily health monitoring to ensure anti-malware protection is maintained.
Install, configure, maintain, and troubleshoot endpoint protection platform software.
Build and maintain endpoint security technology and processes to enable the security operations team to investigate potential security events effectively and quickly.
Coordination of scanning file and/or folder exclusions with application and business owners.
Review and respond to incident tickets assigned by the service related to endpoint protection security tools.
Monitor vendor support notification service for critical information, i.e., alerts, notices, patches, and upgrades related to endpoint protection security tools.
This position will require attention to detail, ambition to recognize and address challenges, strong collaborative skills, and the ability to contribute to the engineering efforts across a wide variety of security products. The candidate should be able to think strategically and know how all the individual components of a security program come together to support the security needs of a global retail organization.
Additionally, the candidate should have experience supporting security technologies, products and programs related to:
Data Loss Prevention
User Behavior Analytics
Log and Event Management
Candidates must have the ability to collaborate effectively with other IT professionals and manage complex, time-sensitive work initiatives.
On-call coverage for security products and incident response is required.
Security Certifications (such as CCNA, CCNP, CCIE, CISM or CISSP)
Apparel & Fashion Luxury Goods & Jewelry Retail
Other Information Technology