Security Engineers develop, design, implement, and integrate security systems used to safeguard enterprise assets against cyber attack. Security Engineers drive innovation, influence delivery, and maximize performance. They deliver high quality artifacts, develop and run security tests and continuously tune security tools for optimization. Security Engineers identify gaps and inefficiencies and work with the business to implement solutions based on their requirements.
The Data Security team is dedicated to protecting sensitive information through a sustainable data security strategy that aligns with business operations and governance. We emphasize end-to-end executional excellence by automating data retention, managing the data lifecycle, and expanding data loss prevention controls across all cloud platforms and core applications.
ROLE- Provides security and technical expertise to support the development of security objects to satisfy business requirements.
- Analyzes and administers security policies to control physical and virtual system access.
- Identifies and investigates security issues and develops security solutions that address compliance requirements that can/ do impact security.
- Identifies, develops, and implements mechanisms to detect security incidents in order to enhance compliance and support of the security standards and procedures.
- Assesses business role requirements, reviews authorization roles, and supports authorizations.
- Demonstrates a comprehensive skill set with testing authorizations for multiple environments and coordinates testing with business/technical users.
- Validates system configurations to ensure the safety of information systems assets and protects information systems from intentional or inadvertent access or destruction.
- Designs and coordinates activities/engagements with other departments (loss prevention, legal, networking, etc).
- Identifies security gaps that expose Costco to potential exploit and develop short- and long-term prioritized remediation to address those gaps.
- Develops and executes security controls, defenses, and countermeasures to intercept and prevent internal/external data infiltrations.
- Identifies and resolves problems often anticipating issues before they occur or before they grow; develops and evaluates options; and implements solutions that support the business.
- Configures, deploys, maintains, and supports security tools.
- Protects confidentiality, integrity, and availability of information from being disclosed to unauthorized parties.
- Creates dashboards, configures alerts, implements and supports security software platforms, and monitors tools/apps.
- Identifies opportunities for streamlining, and increasing effectiveness through continuous process improvement.
- Develops and documents security events and incident handling procedures into Playbooks.
- Collaborates with business partners, project teams, and team members to build secure solutions that protects data and enables the business with tools and processes that make sense and adapt to changing business needs both on-premises and in the cloud.
- Develops and maintains custom scripts (e.g., Python, Apps Scripts, PowerShell) and API integrations to automate data discovery, unstructured data cleanup, and data lifecycle management processes.
- Builds automated workflows to ingest, parse, and analyze data security logs, reducing manual overhead for governance and compliance reporting.
- Engineers and deploys infrastructure-as-code (IaC) solutions to build, scale, and maintain SASE and DSPM architectures across multi-cloud environments.
- Designs and codes custom integrations between data security platforms (DLP, DSPM) and core business applications to ensure continuous data visibility without disrupting workflows.
- Translates enterprise data security policies and governance frameworks into deployable, automated code to enforce technical controls across cloud and on-premises environments.
- Implements policy-as-code mechanisms to automatically detect, alert on, and remediate unauthorized data sharing or non-compliant data storage configurations.
- Implements practices, processes, and procedures consistent with Costco's information security policy and IT standards.
- Provides data (metrics) to leadership that drives decision making and strategy [Add 2-3 team specific tasks and responsibilities].
REQUIRED- GSEC (GIAC Security Essentials) or Certified Information Systems Security Professional (CISSP)
Recommended- Strong Understanding of Google Cloud Platform (GCP), Secure Browsers (Google Chrome), Secure Access Service Edge (SASE), Google Admin Console, Data Security Posture Management (DSPM).
- Proficient in the following tools: Wiz, Proofpoint, Lucid, GitHub, BigQuerry, BetterCloud.
- Proficient in Google Workspace applications, including Sheets, Docs, Slides, and Gmail.
Required Documents• Cover Letter
• Resume
California applicants, please click here to review the Costco Applicant Privacy Notice.
Pay Ranges:
Level SR - $150,000 - $190,000, Bonus and Restricted Stock Unit (RSU) eligible
Level Staff - $180,000 - $225,000, Bonus and Restricted Stock Unit (RSU) eligible
We offer a comprehensive package of benefits including paid time off, health benefits - medical/dental/vision/hearing aid/pharmacy/behavioral health/employee assistance, health care reimbursement account, dependent care assistance plan, short-term disability and long-term disability insurance, AD&D insurance, life insurance, 401(k), stock purchase plan to eligible employees.
