SENIOR SECURITY ENGINEER

About The Position

Requirements

• Bachelor's Degree in computer science, information systems, or related technical field.
• 5 years of experience in a related security field.
• Experience with Dynamic Application Security Tools (specifically HCL Appscan, Burp Suite).
• Experience with Static Source Code Analysis Tools (specifically SNYK).
• Experience with Software Composition Analysis Tools (specifically SNYK).
• Experience with API Security Tools (specifically NoName Security).
• Experience with PostMan API Platform.
• Proficiency in programming and scripting languages.
• Proven ability to design and build scalable, high volume, and low latency applications.
• Knowledge of network and web related protocols (e.g., TCP/IP, UDP, IPSEC, HTTP, BGP and other routing protocols).

Nice To Haves

• Master's Degree in computer science, information systems, or related technical field.

Responsibilities

• Conduct thorough security assessments and pen-tests on Kroger websites and services.
• Lead the charge in supporting our new solution for API-based security issues.
• Provide expert support for various application security tools, becoming the go-to person for all things security.
• Help developers understand vulnerabilities and articulate the risks, guiding them on effective remediation techniques.
• Work closely with architects, developers, and CIS counterparts, while also engaging with industry experts and utilizing cutting-edge tools to stay ahead of threats.
• Oversee identity and access management, cloud security, cryptography, logging and alerting, security operations, malware detection, incident response, vulnerability scanning, penetration testing, security architecture, and digital forensics.
• Oversee the implementation of network and computer security and ensure compliance with corporate cybersecurity policies and procedures.
• Assist with the monitoring of all security systems and their corresponding or associated software, including firewalls, intrusion detection systems, cryptography systems, and anti-virus software.
• Monitor server and firewall logs, scrutinize network traffic, establish and update vulnerability scans.
• Analyze and resolve complex security breaches and vulnerability issues in a timely and accurate fashion, and conduct user activity audits where required.
• Manage and ensure the security of databases and data transferred both internally and externally.
• Oversee penetration testing of all systems in order to identify system vulnerabilities.
• Design, implement, and report on security system and end user activity audits.
• Assist in developing new and modifying existing security policies and procedures to maintain compliance.
• Evaluate existing and recommend new and emerging security technologies.
• Conduct research on emerging products, services, protocols, and standards in support of security enhancement and development efforts.

Benefits

• A wide range of healthcare coverage, including affordable, comprehensive medical, dental, vision and prescription coverage.
• Flexible scheduling in full- and part-time roles with paid time off, including holiday and sick pay based on eligibility and length of service.
• Emotional and financial support with free counseling through our Employee Assistance Program.
• Valuable associate discounts on purchases, including food, travel, technology and so much more.
• Up to $21,000 in tuition reimbursement over your career, through our industry-leading Continuing Education program.
• Vast potential for growth, through an abundance of industry-leading training programs and diverse career pathways.