Security Engineer

The Role:

At Deckers Brands, Together, Every Step is a promise kept that every employee can bring their authentic self, is valued and supported, as a whole person, at work and beyond. Together, Every Step is how we continue to deliver exceptional business results, experience an amazing place to work, and have a positive impact on the communities and world around us. 

Job Title: Security Engineer

Reports to:  Senior Manager, Security Engineering

Location:  Goleta, CA (remote position)

We celebrate diversity–of your background, your experiences and your unique identity. We are committed to ensuring an inclusive and equitable workplace where all of our employees can Come as They Are. We believe that when we bring our different perspectives to work, we are truly Better Together.

Your Impact:

The primary functions of this role, include but are not limited to:

• Design, implement, and manage Palo Alto firewall and Zscaler solutions to ensure security and integrity of network infrastructure. Collaborate with network and systems teams to develop and enforce security policies, standards, and best practices. Participate in incident response activities, including forensic analysis, root cause analysis, and recommendations for improving security posture. Conduct periodic firewall rule reviews and optimization to ensure compliance, efficiency, and adherence to security standards.
• Collaborate with vendors and third-party service providers to evaluate and implement new security technologies and solutions. Administer and monitor Intrusion Prevention, URL filtering, VPN, and Firewall solutions. Coordinate incident response, investigation, and resolution of security incidents. Ensure Global Security Strategy is meeting security and privacy needs of internal and external customers. Provide strategic and tactical security guidance for existing and new product and service deployments.
• Facilitate information security risk assessment process, including reporting and oversight of risk treatment and mitigation efforts. Communicate and promote awareness of information security, information risk, and privacy to business units, customers and partners. Provide “follow the sun” support for escalated Information Security-related requests and incidents, as well as participate in on-call support rotations, as needed. Define and assist in small-scale projects to improve operational efforts. Participate in vulnerability management assessments, penetration tests and social engineering campaigns. Assist in daily monitoring of intrusion protection and detection (IPS/IDS) and log analysis systems, working with other members of security team and service desk to address security issues.
• Provide feedback on IDS/IPS and Security Information and Event Systems to assist in tuning systems for better detection and reporting rates. Assist in analyzing potential security events detected in network environments and either resolve or escalate event as appropriate. Work with security incident analysts to perform deeper analysis of detected events. Review service communication requirements and recommend firewalls rules that follow principle of least privilege.

SALARY: $167,731/year - The salary range posted reflects the minimum and maximum target for new hire salaries for this role in our Goleta, CA location. Individual pay will be determined by location and additional factors, including job related skills, experience, and relevant education or training. Your recruiter can share more about the specific salary for your preferred location during the hiring process

Who You Are:

Education/Certifications:

• Bachelor’s degree or equivalent in Computer Science or related field of study
• Required Certification: Current or prior security professional certification [Global Information Assurance Certifications, Certified Information Systems Security Professional (CISSP), Systems Security Certified Practitioner (SSCP), AWS Certified Security – Specialty, Palo Alto Networks Certified Network Security Administrator (PCNSA), Zscaler Certified Administrator (ZCCA), or similar credential]

Work Experience:

• 5 years of progressive experience in Information Security

Skills/Competencies:

Applicants must have demonstrated experience with:

• designing, implementing, and supporting Zscaler platform in enterprise environments;
• configuring and managing advanced security features of Palo Alto firewalls, to include threat prevention, URL filtering, application control, and user identification;
• network segmentation and micro-segmentation techniques to enhance network security and isolate critical systems;
• designing and implementing enterprise security solutions in the information security field;
• security experience encompassing end point technologies, applications, physical and virtual data center environments;
• security practices to include security incident response and risk management;
• designing, development, implementation and operational support of mission critical solutions in large scale environments and organizations (multiple datacenters for organizations with 5000 or more employees globally, supporting global regions including EMA, NA and APAC);
• information security management frameworks, to include ISO 27001 and NIST CyberSecurity Framework; defining and assisting in regional and global projects to improve operational efforts;
• *nix operating systems;
• CrowdStrike;
• at least one of the following tools: Nessus, Splunk, Metasploit, Burp Suite, Wireshark, EMET, Proofpoint, Netcat, Nmap, or Kali;
• at least six of the following technologies and protocols: IIS, Oracle, Apache, SMTP, SNMP, SQL, SSH, Firewalls, IDS/IPS, URL filtering, Switches, Routers, NAS, or Vulnerability Management;
• any of the following languages: Python, Ruby, Java, or C++;
• reading exploit code to determine how and why it works, and required modifications prior to using it in a test;
• IT systems, TCP/IP protocols, network devices and applications, or code development;
• network protocols and technologies, to include VLANs, routing protocols (e.g., OSPF, BGP), and network segmentation techniques;
• securing cloud environments to include AWS or Azure;
• Zero Trust network architecture; and
• Configuration/implementation of IPSec tunnels.

What We'll Give You

• Competitive Pay and Bonuses - We’ve created a variety of competitive compensation programs to foster career development, reward success and to show our employees just how much they’re valued.
• Financial Planning and wellbeing - No matter what financial goals our employees have set, we want to help them get there. Our plans provide powerful ways to protect income, pay for expenses and invest in the future.
• Time away from work - Sometimes we need time away to be with family, focus on our health or just simply recharge. Our plans support our employees’ needs to get out, get healthy and come back stronger than ever.
• Extras, discounts and perks - Being a valued member of the Deckers Brands team means more than just a paycheck. From generous discounts to community-based programs, we offer a variety of cool extras
• Growth and Development - Deckers Brands was built on the idea of pursuing passion. That’s why we offer extensive opportunities and support for personal and professional development.
• Health and Wellness - There’s nothing basic about our comprehensive health and wellness programs and offerings. While at work and at play, we aim to support a healthy lifestyle.

Equal Employment Opportunity
Diversity and inclusion are key to our success. We are proud to be an equal opportunity employer and our employees are people with different strengths, experiences and backgrounds who share a passion for our brands. We welcome qualified applicants regardless of their race, color, religion, sex, sexual orientation, gender identity, gender expression, national origin, age, military or veteran status, mental or physical disability, medical condition and all of the other beautiful parts of your identity.

#GM-ELT1

#GMELT1

#LI-DNI