Security Engineer 2 IT Security and Compliance

Security Engineer 2-IT Security and Compliance

We are a diverse community of people, all working together to bring sensational style, sensible prices, and the best service possible to our customers. We're looking for talented individuals who want to work in an energetic, respectful, collaborative environment. With a wide array of jobs, internships, training and more, there are countless opportunities for you to grow your career with us.

The Security Engineer 2 will report to Associate Director, Security Engineering and will be part of the team that is responsible for the IT Security and Compliance within JCPenney.

Primary Responsibilities:

• Provide engineering focus on day-to-day and project-centered efforts for various engineering platforms, including Identity and Access Management (IAM), Vulnerability Management and Network Security. Tasks include architectural design, build/deploy activities, capability planning, logging strategies, data analytics enrichment, advanced support troubleshooting and system stability and availability
• Work closely with network and infrastructure engineering teams to create and implement custom security solutions that adhere to JCP security standards and risk management strategies
• Design and implement risk management principles and industry-standard enterprise architecture guidelines as part of build and deployment lifecycles
• Provide engineering direction and solution planning for existing and new technology security stacks
• Plan and implement best practices and security controls during design and build processes, to ensure confidentiality, integrity, and availability
• Pro-actively identify and help remediate technology gaps and technical blockers to ensure downstream and upstream systems are performing optimally
• Continually research and maintain good working knowledge of emerging threats and risks, risk management principles, and enterprise architecture frameworks
• Participate in technology roadmap planning and definition
• Maintain up-to-date architectural and support documentation for security stacks and services
• Effectively manage assigned incidents, work-orders, and change requests within defined SLAs
• Mentor junior security engineers and analysts and serve as a POC for ITSC members

Skills & Experiences:

• Experience: 5+ years of relevant experience in identity management disciplines; privileged identity management, privileged access management, identity and access management, or equivalent knowledge
• Experience: 5+ years of relevant experience in security disciplines; engineering, architecture, risk management, or equivalent knowledge
• Experience with PIM, PAM, IAM and Network Security technologies is preferred
• Experience using Micro Focus NetIQ Identity Manager, Thycotic Secret Server, Entrust IdentityGuard, Entrust GetAccess, and Microsoft PKI services is preferred
• Experience using programming languages: Java, PowerShell, .NET, JavaScript
• Experience using XML and XPATH is a plus
• Experience using REST and SOAP web services is a plus
• Experience building and using LDAP queries is a plus
• Working knowledge of Windows/Linux OS, along with basic networking principles
• Experience with designing, building, and implementing security-centric systems and architectures
• Experience working closely with project and program managers to define security requirements and deliverables
• Must be comfortable working on multiple, complex issues and projects within defined timelines
• Working knowledge of MITRE ATT&CK and D3FEND frameworks is a plus
• Experience with Threat Modeling and Enterprise Architecture frameworks is a plus
• Previous network engineering experience is a plus
• CISSP, SSCP, CCSP, or other related security certifications preferred
• Works independently with minimal supervision
• Excellent communication skills both oral and written Demonstrates analytical skills with ability to visualize and articulate complex problems / concepts

What you get:

We offer a competitive benefits package including medical/dental/vision, term life insurance, paid vacation/holidays, 401(k) Savings Plan with company match, and an associate discount on JCPenney merchandise.

About JCPenney:

JCPenney is the shopping destination for diverse, working American families. With inclusivity at its core, the Company's product assortment meets customers' everyday needs and helps them commemorate every special occasion with style, quality and value. JCPenney offers a broad portfolio of fashion, apparel, home, beauty and jewelry from national and private brands and provides personal services including salon, portrait and optical. The Company and its 50,000 associates worldwide serve customers where, when and how they want to shop - from jcp.com to more than 650 stores in the U.S. and Puerto Rico. In 2022, JCPenney celebrates 120 years as an iconic American brand by continuing its legacy of connecting with customers through shopping and community engagement. Please visit JCPenney's Newsroom to learn more and follow JCPenney on Facebook, Instagram, Twitter and LinkedIn.

For more opportunities to join our team please visit our careers page.

Job Title: Security Engineer 2 IT Security and Compliance
Location: Plano, TX, United States -
Job ID: 1112973

J.C. Penney Company Inc.
Plano, Texas