Sr. Cybersecurity Engineer
L.L.Bean · Freeport, Maine, United States
Retail · 1,001-5,000 employees
About the role
The role involves designing and implementing cybersecurity solutions to manage information security and compliance risks. It also includes providing expert guidance on risk mitigation, incident response, and ensuring security is integrated across projects and operations.
What they look for
Requirements
Candidates should have a bachelor's degree in Computer Science or a related field and at least 5 years of experience in cybersecurity. Strong knowledge of enterprise security solutions, risk management, and experience with cybersecurity tools is essential.
Full description
At L.L.Bean, we believe the outdoors brings out the best in all of us. We are committed to fostering a culture of belonging and creating safe, inclusive spaces where everyone feels welcome—both here and Outside. We value individual differences and are dedicated to maintaining an inclusive work environment where everyone can bring the best of their experience and talents and truly thrive.
Position Purpose
Support the design and implementation of cybersecurity solutions that proactively manage information security and compliance risk. Supports both strategic planning and operational execution for cybersecurity tools and processes. Provide expert guidance and leadership on risk mitigation, compliance, threat hunting and intelligence, data protection, process reporting and improvement, and incident response - ensuring security is embedded across projects and operations. Also applies these skills to the organization overall in consulting to cyber risk reduction and designed for security solutions.
Responsibilities
- Design and lead information security and compliance program initiatives according to leadership strategy, business requirements, and threat and risk management.
- Collaborate with business leaders, architects , engineers, and application development teams to advise on the design of compliant, secure, and measurable IT solutions.
- Support the analysis and potential evaluation recommendations of new tools and solutions for security components, compliance, and functionality.
- Conduct in-depth reporting for internal and external threats and vulnerabilities that drive solutions for risk management, executive communications, and compliance.
- Contribute to threat management operations (threat hunting and threat management strategy).
- Provide technical leadership, ownership, and management for cybersecurity tool stack.
- Support incident response planning and be available 24x7 for major incident response.
- Support leadership in capacity, tool, and budget planning, including working directly with vendors.
- Assist and lead by example for other analysts and engineers to utilize security tools and execute processes and procedures efficiently and effectively.
- Act as an information security and compliance consultant to enterprise projects as subject matter expert.
- Drive and employ shop standards within the context of job responsibilities.
- Understand and apply change management procedures/principles.
- Produces documentation for service portfolio.
- Support leadership through the design and management of initiatives, collaborate with the Response team to align solutions, and ensure timely delivery and reporting.
- Other duties as assigned.
Health and Safety Requirement
Every employee is responsible for contributing to a safe and healthy workplace. Employees are expected to be active participants in health and safety by following all safety policies and procedures, reporting unsafe conditions or at-risk behaviors to leadership, and conducting work in a safe manner. Those in a leadership role are also expected to model safe behaviors, evaluate risk, and ensure that risks are reduced to acceptable levels.
Education: 4-Year Bachelors Degree in Computer Science or related field
Experience: 5+ years in the role
Skills and Qualifications
- Computer Science, Cybersecurity, or related degree or work experience.
- Strong, demonstrated knowledge of and experience with enterprise security and risk management solutions.
- Cybersecurity SIEM/SOC tool stack experience (e.g. Crowdstrike)
- Experience managing and building Cybersecurity SOAR systems
- IT security risk assessment and contract negotiation skills a plus.
- Partnering with peers and with others to deliver business solutions.
- Strong problem determination skills for complex enterprise systems.
- Coaching, supporting, and training others.
- Supporting 7x24 on call requirements.
- Leading medium-sized technical projects.
- Planning long-range technology directions.
- Writing clear and concise technical and business documents.
- Strong written, verbal and public speaking communication skills.
- Team Skills: collaborative problem solving, negotiation, facilitation, and presentation.
- Strength and experience in systems management, provisioning and automation solutions preferred.
- Strong experience in networking, *NIX, Windows, virtualization, app security, and Internet security.
- Systems scripting or prompt engineering knowledge is a plus, including Python, Perl, shell, etc.
- Certifications also a plus, including CISA, CEH, CISM, CISSP, etc.
If you care about the outdoors, joining L.L.Bean is a great way to feel good about what you do. Our benefits package makes a good thing even better, with programs and perks designed to support your health and financial goals. Plus, maintaining a healthy work-life balance and re-charging outside are all part of the plan.
If your experience looks a little different from what we've identified and you think you'd be great at this role, we'd love to learn more about you! At L.L.Bean, we believe the outdoors brings out the best in all of us. We strive to reflect this every day in our commitments to employees and partners and in our efforts to promote belonging.