Staff Security Engineer - austin & San Antonio, TX

Staff Security Engineer

H-E-B is a leading innovator in technology, and we continue to invest in our customers' digital experience. Our Digital Technology Partners collaborate to design, construct, implement, and support technology solutions, using the best available technologies to deliver modern engagement, reliability, and scalability to meet customer needs. As a Staff Security Engineer, you'll design, test, maintain, and implement best-in-class security solutions and strategies to improve the security posture of H-E-B technical controls and processes. You'll also coach and mentor. Once you're eligible, you'll become an Owner in the company, so we're looking for commitment, hard work, and focus on quality and customer service. 'Partner-owned' means our most important resources--people--drive the innovation, growth, and success that make H-E-B The Greatest Omnichannel Retailing Company. Do you have a: HEART FOR PEOPLE... advanced interpersonal skills? HEAD FOR BUSINESS... extensive experience designing, developing, and implementing technical initiatives? PASSION FOR RESULTS... drive to help execute threat responses? Digital Security is on a journey to decouple log search, storage, and ingest technologies to create highly scalable, flexible, and AI-ready solutions for review and analysis of security telemetry. The Security Engineering team is looking for a skilled Site Reliability Engineer (SRE) to build and advance this strategy for security monitoring and observability. What is the work? Design & Development / Information Technology: - Owns products of H-E-B's information security stack; leads planning, implementation, lifecycle, and care for security measures and controls related to security monitoring, detection, and incident response. - Assesses existing security posture against industry best practices and control frameworks; proposes solutions and improvements. - Works with H-E-B teams and external security solution vendors to scope / configure / validate solutions that support our security posture. - Works with information system owners and administrators to design / propose / implement security relevant standards, techniques, and processes. - Collaborates with other engineering teams to lead / drive software-defined infrastructure environment, configuration and build scripts, and CI / CD security components. - Educates on / ensures others understand implementation of security controls and solutions; ensures gaps, dependencies, and defects are identified / addressed. - Research / stays current on emerging technologies, threats, and solutions; helps evaluate technologies that align with business goals, reduce costs, and improve reliability, scalability, and security. - Champions an environment of information security; shares / promotes security and safe operating procedures. - Coaches / mentors team partners What is your background? -7+ years of experience designing / developing / configuring / implementing / supporting systems and multi-vendor, diverse security solutions in medium to large enterprises -3+ years of experience in information security or IT risk management / compliance -Passion for automating processes to drive efficiency and scale -Passion for improving reliability and observability of services Do you have what it takes to be an H-E-B Staff Security Engineer? -Demonstrated experience with data pipeline solutions (e.g. Cribl, Vector) -Demonstrated experience with cloud-based data warehousing and data lake solutions such as AWS Security Lake & S3, BigQuery & Google Cloud Storage -Advanced working knowledge of monitoring and observability platforms (e.g. Datadog, Splunk) -Advanced working knowledge of SIEM platforms such as Splunk, CrowdStrike NG SIEM, Google Cloud SecOps -Advanced working knowledge of infrastructure as code tools (e.g., Terraform, AWS CloudFormation) -Advanced working knowledge of Python, Golang, PowerShell, or *nix Shell scripting -Experience working with public cloud infrastructure (AWS, GCP, or other platform experience) -Strong working knowledge of related industry regulations such as PCI DSS and HIPAA -One or more professional security certifications (e.g., CISSP, OSCP, OSCE, GCIH, AWS Security) preferred JDSECURITY SEC3232