Senior Security Engineer - (Cloud & Enterprise)

Job Function: Global Security and Risk Management
Job Title: Senior Security Engineer - (Cloud & Enterprise)
Location: California, Maryland, District of Columbia, Pennsylvania, Virginia, Indiana, Washington - Hybrid
Job Class: Exempt
About SHEIN Technology:
SHEIN Technology is a U.S. technology company that supports SHEIN Distribution Corporation, responsible for distributing SHEIN's products in the U.S. Founded in 2012, SHEIN is a global fashion and lifestyle e-retailer committed to making the beauty of fashion accessible to all. We use on-demand manufacturing technology to connect suppliers to our agile supply chain, reducing inventory waste and enabling us to deliver a variety of affordable products to customers around the world. From our global offices, we reach customers in more than 150 countries. To learn more about SHEIN, visit SHEIN.com.
Here, innovation isn't simply about protecting and defending our company. We develop solutions that are practical today and scalable tomorrow; and we create collaborative teams dedicated to innovation across each of our businesses to share our common values and vision.
Position Summary:
The Senior Security Engineers focus will be on Network and Cloud security. The engineer within GSRM, is responsible for leading the design, implementation and execution of platform, policy, playbook and protocol development for reliability engineering. There will be a close relationship between the security engineering and operations (SOC) teams supporting, data ingest, incident response and vulnerability mitigation. This Engineering expert will ensure all production security controls and technologies are evaluated, enabled, monitored and built with efficacy and effectiveness to meet or exceed industry guidelines. Engineering members will contribute toward baselining established polices and SLAs, across all aspects of the security operating framework and making recommendations for constant improvement, while keeping the business and customer experience in mind.
This Security Engineer should have a deep technical understanding of network, application, host and network security practices, as well as all incident response protocols and practices. Must be familiar with security industry standards and best practices, and must be able to effectively work with development, application and operational counterparts, across a broad deeply technical environment in all security areas common within an e-commerce and technology industry. He or she should also have extensive experience in security data analytics, intelligence & threat hunting, vulnerability management and digital forensics. This Security Engineer will also assist their leadership with ensuring all security tools and technologies are properly supported, implemented and sufficiently met the needs for which they are deployed to protect SHEIN confidential and proprietary data.
Core Responsibilities:

• Comprehensive understanding and proven administration of security technologies associated with AWS/Azure/Google Cloud/Tencent/Alibaba type providers and related architectures
• Understand and be able to troubleshoot end-to-end user connectivity to cloud-based infrastructure systems and services
• Proven experience implementing CDN tuning as it pertains to WAF/DDoS/BoT
• Knowledge of cloud OEM abilities associated with API protection, efficacy validations and reporting/alerting
• Comprehensive experience associated with architecture/deployment/tuning and operations associated with Imperva WAF technology
• Evaluate existing cloud and premise technologies for efficacy specific to visibility and protection of data in transit
• Collaborate with the security reliability engineering, change management, threat hunting, vulnerability management and incident response functions and participate in any day-to-day cross functional relationships to fulfill business needs.
• Participate in creating and updating new strategy, project plans and policy documents based on security and data protection requests that map to SHEIN's business requirements
• When needed liaise with external agencies, such as law enforcement, standards and technology organization, advisory bodies and industry and peer working groups as necessary, to ensure that the organization maintains a strong security posture and technical congruency.
• Work directly with business units to facilitate change requests, incident response protocols, data analysis, solution requirements and technology roadmaps to ensure compliance with industry and regulatory standards.
• Establish credibility throughout the organization by earning the reputation for being a proactive security engineer.
• Engineer visibility/protection type technologies sustaining high-availability service levels and ensure fulfillment of business-wide service levels.
• Demonstrates continuous effort to improve system security while maintaining the best possible performance, streamline work processes and work cooperatively and provide quality seamless customer service.

Skills and Qualifications:

• A minimum of 5 years of engineering experience in enterprise and cloud networks specific to security, in an e-commerce industry
• Possess a Bachelor's degree or higher in the field of engineering, computer science or equivalent advance technology field of study
• Strong knowledge of data privacy regulations and guidelines similar to GDPR, CCPA, PCI, CPA etc.
• Experience building and running from ground up segmented, secure and platform managed security systems/applications.
• Must have experience partnering with external governance and compliance parties on meeting regulatory requirements and assessing emerging threats and mitigations.
• Strong working and practical knowledge of security monitoring, threat hunting, log management, SIEM and data analytics.
• Experience with change management lifecycle, development and regular preparation of management status and key metrics reports
• Should have strong process and procedure ownership experience for audit and control systems
• Ability to translate cyber security threats from a technical perspective to business-line understanding and execution
• Ability to work with extremely technical staff working on very sensitive subject areas and with extremely sensitive information
• High level of personal integrity, with the ability to professionally handle confidential matters and exudes the appropriate level of judgment and maturity
• Must be able to support on-call, escalation and high-paced/ fast tempo production environments
• Must be a strong communicator with exceptional verbal and written communication skills to translate the vision and strategy into clear priorities and direction, both internally and externally.

SHEIN Technology is an equal opportunity employer committed to a diverse workplace environment.
Pay: $109,400.00 min - $175,000.00 max. annually