Senior IT Security Engineer

Arhaus was founded in 1986 on a simple idea: Furniture and décor should be sustainably sourced, lovingly made, and built to last. Today, we partner with artisans around the world who share our vision, creating beautiful, heirloom-quality pieces that can be used—and loved—for generations.

As a Senior IT Security Engineer, you will play a critical leadership role in designing, implementing, and managing advanced security solutions that protect our complex hybrid infrastructure—including data centers, cloud environments (AWS, Azure), eCommerce platforms, distribution centers, call centers, and retail store systems. You will lead cross-functional efforts to integrate security into infrastructure, applications, and business operations, and act as a trusted advisor to IT, DevOps, Compliance, and business stakeholders.

Essential Duties & Responsibilities:

• Lead the design, implementation, and optimization of security controls and tools across on-premise and cloud environments, ensuring robust protection of distributed systems.
• Oversee and enhance the incident response lifecycle—monitoring, triaging, investigating, and remediating security incidents while mentoring junior team members on best practices.
• Conduct and guide advanced threat modeling and risk assessments for new technologies, infrastructure changes, and third-party services.
• Define, refine, and enforce security policies, standards, and procedures, ensuring alignment with industry frameworks such as NIST, CIS, and PCI-DSS.
• Provide technical leadership to IT, DevOps, and Data Engineering teams to ensure secure-by-design architectures and automated security across infrastructure and CI/CD pipelines.
• Administer and tune enterprise-grade security tools and platforms (e.g., SIEM, IDS/IPS, endpoint protection, firewalls, WAFs, vulnerability scanners) and ensure their integration with monitoring and alerting systems.
• Lead and participate in security audits, penetration testing efforts, and periodic risk assessments; drive remediation efforts based on findings.
• Spearhead security strategy initiatives and threat landscape analysis to guide technology investments and control enhancements.
• Support and help lead regulatory compliance efforts (e.g., PCI-DSS, SOX, CCPA) and interface with auditors, legal, and risk management functions.
• Mentor junior engineers and contribute to knowledge-sharing across the security and IT organization.
  

Requirements:

• Bachelor’s degree in Computer Science, Information Security, or a related field, or equivalent professional experience.
• 5+ years of progressive hands-on experience in cybersecurity engineering, including leadership or mentoring responsibilities.
• Expertise in securing infrastructure, networks, applications, and cloud environments.
• Deep experience with cloud platforms (AWS and/or Azure) and their security services (e.g., IAM, VPC security, KMS, Security Hub).
• Proven experience with enterprise security tools (e.g., Splunk, CrowdStrike, Qualys, Palo Alto Networks, Fortinet).
• Strong proficiency in scripting or automation (e.g., Python, PowerShell, Bash) for security operations and tooling.
• In-depth understanding of compliance and regulatory requirements such as PCI-DSS, SOX, and GDPR.

Preferred:

• Industry certifications such as CISSP, GIAC, OSCP, AWS Certified Security Specialty, or similar.
• Experience with security for data platforms (e.g., Snowflake, BigQuery, Redshift).
• Background securing eCommerce platforms and APIs (e.g., Shopify, Magento, custom apps).
• Familiarity with retail IT infrastructure, including POS systems, wireless networks, and store operations.
• Understanding of Zero Trust security models and identity solutions like Okta, Azure AD.

Arhaus is an Equal Opportunity Employer and prohibits discrimination and harassment of any kind. Arhaus is committed to the principle of equal employment opportunity for all employees and to providing employees with a work environment free of discrimination and harassment. All employment decisions at Arhaus are based on business needs, job requirements, and individual qualifications, without regard to race, color, sex, sexual orientation, gender identity, religion or belief, family or parental status, or any other status protected by the laws or regulations in the locations where we operate. Arhaus will not tolerate discrimination or harassment based on any of these characteristics. Arhaus encourages applicants of all ages.

Equal Opportunity Employer
This employer is required to notify all applicants of their rights pursuant to federal employment laws. For further information, please review the Know Your Rights notice from the Department of Labor.