GENERAL PURPOSE:
The Security Engineer II is responsible for envisioning and taking steps to implement security
improvements to protect Ross' information and assets. The Host Security Engineer leads
endpoints security, mobile security, cloud security, data analytics & orchestration automation
initiatives that harden Ross's security posture ensuring integrity and compliance. The Host
Security Engineer leads the product area strategy, roadmap, application design and
vendor/product due-diligence functions.
The Security Engineer serves as a liaison to the other IT functional groups, influencing outcomes
as appropriate. The Host Security Engineer operates as the Subject Matter Expert (SME) in
security and provides 3rd level production support for applications.
The base salary range for this role is $124,700 - $212,800. The base salary range is
dependent on factors including, but not limited to, experience, skills, qualifications, relevant
education, certifications, seniority, and location. The range listed is just one component of
the total compensation package for employees. Other rewards vary by position and
location.
ESSENTIAL FUNCTIONS:
• Research, evaluate, and develop security strategy and develop standards following
industry best practices.
• Recommend improvements to company's security posture through technological,
administrative, or physical controls. Work with project teams regarding security
architecture and technical implementation.
• Lead information security implementations and support project delivery, ensuring
security solution are acquired, configured and implemented correctly. This includes
overseeing the full lifecycle from planning and design to configuration, deployment, and
validation ensuring every solution is aligned with business requirements, configured
according to approved design specifications and deployed with full integration into Ross's
ecosystem.
• Work with the other IT organizations to design, develop, and implement Enterprise
Security solutions to support new initiatives
• Provide expert-level technical expertise to solve production issues related to security
applications, recommend solutions or process enhancements and root cause analysis.
• Collaborate with the Information Security Governance and Technical Architecture teams
to develop global Cloud security technical designs and maturity standards.
• Ensure that business strategy, IT enterprise security and implementation are aligned.
Provide input to technical designs in enterprise security solutions, specifically around
tools and systems that would best support the design.
• Ensure that security solutions are acquired, configured and implemented correctly.
COMPETENCIES:
People
• Building Effective Teams
• Developing Talent
• Collaboration
Self
• Leading by Example
• Communicates Effectively
• Ensures Accountability and Execution
• Manages Conflict
Business
• Business Acumen
• Plans, Aligns and Prioritizes
• Organizational Agility
With particular emphasis on the following specific position-related competencies:
• Teamwork
• Strong Analytical Skills
• Business Awareness
• Problem Solver
QUALIFICATIONS AND SPECIAL SKILLS REQUIRED:
• Strong knowledge of security tools Anti-virus/malware protection, Advanced Threat
Protection, Log Collection & Analysis, User Behavior Analytics, Vulnerabilities
Managements in Operating Systems, Databases, and Networks.
• Strong knowledge of current security space with general understanding of current security
threats, detection and response & automation orchestration toolsets including endpoint
security, cloud security SIEM and EDR/XDR/MDR and IR.
• At least 7 years of Information Security experience and at least 5 years with a large
organization.
• Strong knowledge of security products such as File Integrity Monitoring, Endpoint
Security, mobile security, Advanced Threat Protection, Security and Log Management
etc.
• Bachelor's degree preferred or senior level certification with equivalent demonstrated
relevant experience with security tools.
• Able to provide accurate estimates of timeframes and cost estimates necessary to complete
potential projects and develop milestones and project implementation plans.
• Ability to work in a group setting and independently to provide technical solutions
• Excellent organizational and time management skills.
PHYSICAL REQUIREMENTS/ADA:
Job requires ability to work in an office environment, primarily on a computer.
Requires sitting, standing, walking, hearing, talking on the telephone, attending in-person
meetings, typing, and working with paper/files, etc.
Consistent timeliness and regular attendance.
Vision requirements: Ability to see information in print and/or electronically.
This role requires regular in-office presence, including engage in in-person team interaction,
meetings and collaboration, client support, mentoring, coaching, and/or feedback. However, this
role can perform duties effectively using a combination of in-office and remote work. #LI-Hybrid
SUPERVISORY RESPONSIBILITIES:
N/A
DISCLAIMER:
This job description is a summary of the primary duties and responsibilities of the job and position.
It is not intended to be a comprehensive or all-inclusive listing of duties and responsibilities.
Contents are subject to change at management's discretion.