Systems Security Engineer

The RealReal   •  

San Francisco, CA

Industry: Retail & Consumer Goods

  •  

5 - 7 years

Posted 217 days ago

This job is no longer available.

The RealReal is leading the way in authenticated luxury consignment, online and in real life at our brick and mortar locations. Founded in 2011, we’re growing fast and fundamentally changing the way people buy and sell luxury — a multi-billion dollar industry. With a team of in-house experts who inspect every item we sell, our commitment to authenticity sets us apart and creates a foundation of trust with shoppers and consignors. Our mission to extend the lifecycle of luxury items is leading innovation in sustainable fashion. We’re proud to promote the circular economy and to be the first luxury member of the Ellen MacArthur Foundation’s prestigious CE100 USA.

Employees at The RealReal are dedicated, collaborative and innovative, and we’re looking for exceptional talent to join our team. Build your career with us and enjoy 401K matching, health, dental and vision insurance, commuter flex spending, healthcare flex spending, generous PTO, a mother’s room, flexible work hours and Friday bagels!

Security’s mission is to build and protect stakeholder trust - customers, employees, investors - in our business, especially where technology is involved. Security @TRR has a unique value in reinforcing trust in the stewardship that is core to the business. We do this by guiding right org security risk decisions and partnering withtechnology and business teams. We bring integrity, knowledge, and a passion for the technology. Come join us in building better security for a company that lives its values of ecology, economy, and quality.

DUTIES & RESPONSIBILITIES

  • Tools eval and administration: network scanning, configuration and file-integrity, asset management
  • Assist with compliance and auditing priorities
  • Implement and operationalize secure engineering solutions
  • Leverage technical understanding to contribute to decisions and implementation on building and/or buying solutions
  • Assist with team’s procurement and vendor management
  • Implement, collaborate with and educate peer teams on secure baselines, artifacts, and integrations
  • Troubleshoot full-stack technical issues
  • Work with teams on processes and guidelines, to integrate with security and compliance policies - with focus on IT and corp.

REQUIREMENTS

  • Monitoring & IR experience
  • Familiar with logging standards and Big Data and DB technologies
  • Deployment experience with containers, virtualization, CI/CD
  • Familiarity with Configuration Management concepts
  • Familiarity with DevSecOps and DevOps practices and tooling
  • Understanding of full stack, with interest in developing expertise in 1-2 areas (i.e. network, big data, database, forensics, IR monitoring, config management, automation etc.)
  • Experience or interest in fulfilling compliance and auditing priorities
  • Five-10+ years in relevant experience and bachelor’s degree; OR 9-14+ years in relevant experience.

NICE TO HAVE

  • Familiarity with some core standards and frameworks (NIST, SANS, CSA and/or equivalents)
  • Familiar with Cloud Security Standards
  • Big Data and analytics experience
  • Architecture and design experience
  • Development experience
  • Advanced degrees
  • Security certifications
  • Presentations and/or white papers, OSS contributions or patents, in applicable areas