Senior Cybersecurity Engineer

CSC Generation

About The Position

At Backcountry, our mission is to connect people to their passions. Our four online storesâBackcountry, Competitive Cyclist, MotoSport and, SteepandCheapâaim to supply our customers with the gear, knowledge, and inspiration necessary to get out there and chase down lifeâs greatest moments. We do this by providing the biggest and best assortment of premium outdoor products, superior shopping experience, personalized Gearhead expertise, lightning-fast and accurate fulfillment, and inspirational, informative, and community-centered content. The Opportunity Are you passionate about cybersecurity and ready to make a real impact? We're looking for a Senior Cybersecurity Engineer to be a key player in protecting Backcountry's digital ecosystemâsafeguarding the platforms that connect millions of outdoor enthusiasts with the gear that fuels their adventures. In this role, you won't just be filling a seatâyou'll be shaping our security strategy from the ground up. You'll work across a modern, hybrid technology stack spanning AWS and GCP cloud environments, manage enterprise identity solutions like Azure Entra ID and Active Directory, and leverage cutting-edge tools like Microsoft Defender XDR to stay ahead of emerging threats. From conducting hands-on penetration testing to architecting secure Infrastructure as Code with Terraform, you'll have the autonomy to drive meaningful change and the support to grow your expertise. If you thrive in dynamic environments, love solving complex problems, and want your work to matter, we'd love to hear from you. This position will report into the Information Security Manager.

Requirements

5+ years of experience in cybersecurity, information security, or related roles
Demonstrated experience in at least 3 of the following areas: Identity and Access Management (Active Directory, Azure AD/Entra ID, SSO) Cloud security (AWS or GCP) Endpoint Detection and Response (EDR) / XDR solutions Vulnerability management and penetration testing SIEM operations and incident response
Solid understanding of networking fundamentals (TCP/IP, DNS, firewalls, VPNs)
Experience with Infrastructure as Code (Terraform preferred) and Git/GitHub workflows
Knowledge of common attack vectors, MITRE ATT&CK framework, and threat modeling
Scripting/automation skills (Python, PowerShell, or Bash)
Strong analytical, problem-solving, and communication skills
Self-motivated with the ability to prioritize multiple tasks in a fast-paced environment
Security certifications such as CISSP, CISM, AWS Security Specialty, GCP Security Engineer, SC-200, OSCP, or CEH
Experience with Microsoft Defender XDR suite (Defender for Endpoint, Identity, Cloud Apps)
Hands-on experience with AWS WAF and CloudFront security configurations
Background in compliance frameworks (SOC 2, ISO 27001, PCI-DSS, GDPR)

Nice To Haves

Security certifications such as CISSP, CISM, AWS Security Specialty, GCP Security Engineer, SC-200, OSCP, or CEH
Experience with Microsoft Defender XDR suite (Defender for Endpoint, Identity, Cloud Apps)
Hands-on experience with AWS WAF and CloudFront security configurations
Background in compliance frameworks (SOC 2, ISO 27001, PCI-DSS, GDPR)

Responsibilities

Manage Identity & Access Security â Administer and secure Windows Active Directory, Azure Entra ID, and SSO configurations; enforce security policies for 1Password; conduct periodic access reviews and implement least-privilege principles
Secure Cloud Infrastructure â Protect and monitor infrastructure hosted in AWS and GCP; configure and maintain AWS WAF rules and CloudFront distributions; review Terraform configurations for security best practices
Lead Endpoint Protection & Threat Detection â Manage Microsoft Defender XDR for endpoint security; monitor alerts, investigate incidents, and lead incident response efforts; develop detection rules and automated response playbooks
Execute Vulnerability Management & Penetration Testing â Run monthly vulnerability scans using OpenVAS; perform manual penetration testing of internal and external systems; prioritize remediation and present risk assessments to stakeholders
Protect Collaboration Tools â Secure Microsoft 365 environment (Exchange Online, SharePoint, OneDrive, Teams); implement Data Loss Prevention (DLP) policies and email security controls
Drive DevSecOps Practices â Integrate security into CI/CD pipelines using GitHub; review Infrastructure as Code for misconfigurations; collaborate with engineering teams on secure development practices

Benefits

Executive Access: Work directly with brand CEOs and senior leadership, solving real business problems and earning mentorship from top operators.
AI-First Skill Building: Get hands-on with the most advanced AI tools in the market. From automation to prompt engineering, youâll build a modern tech stack that sets you apart in any industry.
Accelerated Career Path: High performers are quickly entrusted with greater responsibility, new challenges, and leadership opportunities across our portfolio of brands.
Competitive benefits: Paid time off policies, 401(k)/RRSP match, medical/dental/vision and a variety of supplemental policies, and employee discounts at our portfolio companies

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume