Senior Security Engineer - Threat Management and Response

Be part of an amazing story. 

Macy’s is more than just a store. We’re a story. One that’s captured the hearts and minds of America for more than 160 years. A story about innovations and traditions…about inspiring stores and irresistible products…about the excitement of the Macy’s 4th of July Fireworks, and the wonder of the Thanksgiving Day Parade. We’ve been part of memorable moments and milestones for countless customers and colleagues. Those stories are part of what makes this such a special place to work. 

Job Overview

The Senior, Security Incident Response Engineer will monitor and investigate normal and escalated security events to determine risk and exposure and perform additional forensics investigations to understand impact and mitigation. This position will mentor more junior level Analysts as a technical leader and work closely with them to manage & resolve multiple incidents simultaneously and prioritize based on risks.  This position will be required to have good written and oral communication skills to present the results of the technical analysis and research of each incident or investigation.

The Senior, Security Incident Response Engineer should have experience and understanding of multiple security platforms and layers including Anti-virus, Firewalls, Proxy servers, Intrusion Prevention Systems, Logging Correlation/management, Operating systems, Protocols and Incident Response.  Perform other duties as assigned.

What You Will Do

• Responds to escalated security events or incidents and implements counter-measures to reduce and/or mitigate further exposure. The Analyst performs triage on events which are reported by various detection devices to filter out things such as false positives and known accepted activities.
• Leads and manages security investigations from discovery to resolution and works as an incident response manager for each security incident.
• Creates reports to display trends and overall statistics based on correlated security incidents and event data to produce monthly exception and management reports.
• Responsible for mentoring, training and support of level 1 Analysts.
• The Analyst II, Information Security Response provides 24x7 monitoring of security detection devices in order to detect potential attacks as they occur and to provide information to on previous malicious network attacks.
• Creates and implements standard operating procedures and processes to help streamline investigations, daily monitoring and analysis research to ensure all analysts are effective and following the same guidelines.
• Consistently demonstrates regular, dependable attendance and punctuality. 
• Collaborate with Ecommerce Support teams to understand their requirements and provide necessary support.
• Partner with Security Architecture and Ecommerce Support teams to identify solutions and propose implementation plans.
• Assist in maintaining and upgrading security solutions that protect enterprise systems, applications, and data by adhering to established policies, practices, and change management processes.
• Work with managers, project managers, architects, and technical leads to allocate resources and facilitate clear communication across all involved teams.
• Help clients identify and evaluate security gaps, translating findings into functional specifications with a focus on infrastructure and business applications.
• Collaborate with technical leads in Networking, Servers, Applications, Field Services, Project Management, Data Center Operations, and subject matter specialists to integrate security controls into a unified architecture that effectively mitigates company risks.
• Apply critical thinking skills to analyze and address complex security challenges.
• Coordinate closely with managed service providers, delivery teams, and vulnerability and incident response teams.
• Demonstrate consistent, reliable attendance and punctuality.
• Foster an environment of acceptance and respect that strengthens relationships, and ensures authentic connections with colleagues, customers, and communities. 
• In addition to the essential duties mentioned above, other duties may be assigned.

Skills You Will Need

• Proficient in security platforms, including firewalls, intrusion prevention systems, testing tools, log management, operating systems, and risk assessments.
• Understanding of Incident response methodologies and assist with coordinating security incidents.
• Resolves high impact and/or complex, chronic or cross-functional problems.
• Ability to explain technical concepts to technical or non-technical personnel.
• Ability to identify common network and web site attacks such as SQL injection, cross site scripting, remote file inclusion and cookie manipulation. 
• Ability to decode and understand traffic flow at packet level traces (skilled with TCPDUMP, PCAPs, traffic generators, etc.).
• Ability to perform IDS / IPS real-time monitoring analysis and/or network forensics.
• Knowledge or skill to create correlation rules to detect threats.
• Ability to understand, analyze and correlate security events and implement counter-measures to mitigate against intrusion attacks.
• Maintaining security monitoring and reporting appliances in addition to leading and analyzing security reporting.
• Have experience with using or managing SIEM technologies.
• Strong knowledge of TCP/IP, HTTP, FTP, cookies, authentication, virus scanning, web servers, SSL/encryption and reporting packages.
• An understanding of a wide array of server grade applications to include Lotus Notes, Exchange, DNS, SMTP, IIS, Apache, SharePoint, Active Directory, Identity Management, Patch Management, LDAP, SQL, and others.
• Experience with a host based FIM (File Integrity Monitoring) solutions and a working knowledge of VPN Remote Access Technologies.
• Experience or working knowledge of Authentication technologies like Radius or Tacacs.
• Working knowledge of Two-Factor Authentication solutions.
• Working knowledge of Intrusion Detection Systems/Technologies.

Communication Skills:

• Excellent written and verbal communication skills.
• Ability to create detailed and/or focused documentation, reports or standard procedures.
• Instructs users on advanced features/functions of business and multiple applications software.
• Writes clear problem descriptions and instructions to aid other individuals or groups in problem duplication and resolution.

Who Are You:

• Candidates with a bachelor’s degree or equivalent work experience in a related field are encouraged to apply. 5+ years of direct experience. 
• Regularly required to sit, talk, hear; use hands/fingers to touch, handle, and feel. Occasionally required to move about the workplace and reach with hands and arms. Requires close vision.
• Able to work a flexible schedule, including on-call and change rotations, based on department and company needs.

What We Can Offer You

Join a team where work is as rewarding as it is fun! We offer a dynamic, inclusive environment with competitive pay and benefits. Enjoy comprehensive health and wellness coverage and a 401(k) match to invest in your future. Prioritize your well-being with paid time off and eight paid holidays. Grow your career with continuous learning and leadership development. Plus, build community by joining one of our Colleague Resource Groups and make a difference through our volunteer opportunities. 

 Some additional benefits we offer include: 

• Merchandise discounts 
• Performance-based incentives 
• Annual merit review 
• Employee Assistance Program with mental health counseling and legal/financial advice 
• Tuition reimbursement 

 Access the full menu of benefits offerings here. 

About Us

This is a great time to join Macy’s! Whether you’re helping a customer find the perfect gift, streamlining operations in one of our distribution centers, enhancing our online shopping experience, buying in-style and on-trend merchandise to outfit our customers, or designing a balloon for the Thanksgiving Day Parade, we offer unique opportunities to be part of some of the most memorable moments in people’s lives.  

Join us and help write the next chapter in our story - Apply Today!

This job description is not all-inclusive. Macy's, Inc. reserves the right to amend this job description at any time. Macy's, Inc. is an Equal Opportunity Employer, committed to a diverse and inclusive work environment. 

LEGALRE00

TECH00