Engineer - Software Lvl 3

We're looking for a Security Engineer with a tech-first mindset to help grow and enhance Nordstrom's Cybersecurity and Privacy Organization. We aim to make technology the easiest part of our internal customers' jobs by improving process clarity, efficiency, and creating insights for the future.

As an Engineer supporting our Governance, Risk, and Compliance (GRC) platform, you will play a crucial role in enhancing and maintaining our GRC infrastructure. Your expertise will ensure the efficiency, automation, and seamless operation of our GRC systems, empowering Nordstrom's internal teams with robust, stable, and innovative solutions.

Does the challenge of connecting systems to understand risk and compliance at an enterprise scale excite you? Are you interested in automating and centralizing data to empower teams? Do you want to build impactful solutions and see them succeed? If yes, join our team and be part of a company at the forefront of retail technology, committed to delivering safe and secure products loved by consumers.

A day in the life…

• Design, deploy, manage, and improve critical security infrastructure services/tools, including authentication, authorization, PKI, secrets management, logging, detection, and vulnerability management.
• Develop and enhance our GRC platform to meet evolving security needs.
• Ensure comprehensive logging, monitoring, auditing, and management of security events for clear visibility.
• Streamline security workflows to improve incident response and operational efficiency.
• Collaborate with internal and external partners on platform design.
• Validate technology and processes to align with cyber strategy, risk management, and governance frameworks.
• Operate within Agile or Kanban sprint frameworks.
• Maintain security documentation, diagrams, build documents, and best practices.

Basic Qualifications:

• Bachelor's degree in computer science, Engineering, or related field, or equivalent experience.
• At least X years of experience in a security or technical engineering role.
• At least X years supporting engineering platforms.
• At least X years with scripting and automation tools; certifications in Linux, Microsoft, or related fields are a plus.
• Experience working within Agile methodologies.
• Ability to manage multiple projects and deliverables effectively.
• Strong knowledge of systems, networking software, hardware, and protocols.
• Experience with coding languages such as Python or Java.
• Experience with GRC platforms like Onspring, Archer, or similar.

Preferred Qualifications:

• Knowledge of security topics like networking, cloud security, cryptography; CISSP or similar is a plus.
• Experience with security compliance frameworks such as SOX, PCI DSS, NIST SP, etc.
• IT certifications in Linux, Microsoft, or related fields are advantageous.
• Experience with AI prompt engineering and understanding of AI models and mechanics.

Please note: If you are not a passport holder of the country for the vacancy, you might need a work permit. Check our Blog for more info.

Do not provide bank or payment details when applying. All applications should be made via the 'Apply now' button.