Sr. Staff Information Security Engineer (Remote)

ID
2022-17272
Category
Technology
Position Type
Full Time
Location : Location
US-Remote

About Blackhawk Network:

At Blackhawk Network, we shape the future of global branded payments through the prepaid products, technologies and network that connect brands and people. Our collaborative innovation and scalable, security-minded solutions help our partners to increase reach, loyalty and revenue. We believe our future holds great things for Blackhawk Network and its partners. We believe that together, we can shape the future. Our beliefs? Win as one team, be innovative, global excellence and be inspiring!

 

Overview:

Are you passionate about your work? Are you looking to take the next leap in your career? Are you looking for an energetic start-up environment with the security of a profitable, growing company? Are you looking for Life/Work balance? Are you looking to be a key contributor in the World’s leading Anytime/Anywhere Payment Network? If you answered ‘Yes,’ please read on…your career is at Blackhawk Network and we want to talk to you!

 

Blackhawk Network’s software solutions underpin our success and include world-class transaction acquisition, switching and routing, real-time settlement, pre-paid card processing, fulfillment, and business analytics components. State of the art consumer web sites, emerging mobile apps, and high-speed transaction processing with volume spikes that make Pikes Peak seem small are all part of a challenging and rewarding technology environment.

 

We are looking to hire an experienced Sr. Staff Information Security Engineer to join the growing Blackhawk Network Global Information Security Team, who will report to the Director of Information Security. This position reports to our Pleasanton, California headquarters, with a remote option. This position is tasked with establishing and leading the Security Enterprise and Infrastructure function for Blackhawk Network’s Corporate and Production environments. The ideal candidate will be a technical self-starter with a passion for breaking ‘all the things’ unbreakable; and working with teams to fix them. The candidate will understand the impact and security decisions that need to be made to keep corporate and production infrastructure secure, and then be able to articulate those to engineers outside the Security team.

Responsibilities:

  • Mentor a small, high-impact and cross-functional Security team
  • Lead planning, implementation and maintenance of security solutions; working with vendors and professional services as needed
  • Review solution architecture and lead implementation of security solutions and associated configurations
  • Review existing solutions and provide guidance in hardening; working with architects and product owners to redesign or reconfigure when necessary
  • Work with Corporate and Production engineers and teams outside security to enhance their systems with security improvements, or integrate their systems with improved security tooling
  • Work with other members of the Security team to constantly refine and improve Blackhawk Network Security Standards
  • Evangelizes security across the enterprise and educate users of best practices for end user security awareness
  • Lead with the Proof of Value process for security vendors
  • Research and understand emerging information security threats, vulnerabilities, and countermeasures
  • Contribute to security policy, procedures, and standards

Qualifications:

  • 8+ years of experience in secure software and/or cloud development, design, and architecture background and experience
  • 8+ years experience in implementing ‘defense-in-depth’ designs security designs for corporate and production infrastructure. Experience with the following
    • Logging, monitoring and response concepts and technologies for cloud networks, corporate networks, and hosts in all environments
    • Identity and Access concepts and technologies to secure production and corporate access, such as: OAuth2, SSO, SAML, Federated Identity, RBAC, etc.
    • Network-security concepts, such as firewall/network design, network segmentation, proxies, IPS/IDS, load balancers, wireless, TCP/IP, routing protocols, common network services, etc.
    • Securing corporate devices and hosts in a mixed OS, global enterprise physical/virtual, on premise and cloud environments
    • Application Security such as SAST, DAST, WAF
    • Database Security
  • Experience with PCI, SOX, SOC-2, HIPAA, GDPR, NIST, and ISO Regulatory Frameworks
  • Ability to program/script in at least one language; Python, GO, Perl, Ruby, C/C++, Java, JavaScript
  • Excellent presentation and written/verbal communication skills.
  • Experience in leading large-scale technology initiatives.
  • Technical documentation and artifact creation.
  • Excellent leadership and teamwork skills.
  • Strong problem solving and analytical skills.
  • Self-motivated and able to work independently.
  • Strong ability to influence people, teams, and organizations.
  • Occasional Travel
  • On-Call for emergencies

 

Preferred:

  • 4+ years' experience as a Developer, System Administration, Network Engineer, Desktop Engineer, Cloud Engineer, and/or DevOps engineer
  • Offensive Security – Web Application, Network, OSINT, Social Engineering, and Red Team Engagements
    • Experience with Security Tools such as; Nmap, Metasploit, Kali, Burp, etc.
    • Understanding of MITRE/PTES Framework
    • Exploit creation, scripting, and reverse engineering.
  • Certifications – SANS GIAC, CISSP, ISC2, ISACA, OSCP/OSCE
  • B.S. / M.S. / PhD in Computer Science, Electrical Engineering, or related experience

EEO Statement:

Blackhawk Network provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.  Blackhawk Network believes that diversity leads to strength. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.

Options:

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed