The Lead, ECR Security Engineer for Endpoints and Mobile is responsible for secure development and maintenance of Estee Lauder's endpoints. This will encompass supporting security assessments of infrastructure and applications, and defining security standards, developing and implementing security controls using Agile and DevSecOps frameworks.
This position will directly contribute to the overall global enterprise endpoint architecture. This role will also provide security solutions around cloud-based applications, Infrastructure, Platform, and Software as a Service (IaaS/PaaS/SaaS). With the move to the cloud, BYOD, and mobile workforce comes an extension of the ELC network. This role is also responsible for best-in-class engineering capabilities for endpoint and mobile security. Must have excellent track record and proven ability to produce effective, innovative solutions on an enterprise scale. Constantly evaluating the evolving IT industry to be on top of the latest innovations in IT and performing fit-analysis of new technologies, sharing the same with ECR leadership.
•Develops and executes strategies, policy and guidelines to increase Endpoint and Mobile Security knowledge throughout the enterprise •Leads network security “run” configurations (whether done in house, by IAAS provider, or third party provider) for security tooling on endpoints and mobile devices •Designs endpoint and mobile security reference architectures (SaaS, PaaS and IaaS deployments) and associated security principles to support business projects including necessary integration points across ECR •Supports assessments of key security controls for the company's applications delivered via mobile and parterns to remediate security gaps discovered by the Senior Technical Director of Application Security •Evaluates, designs and implements new endpoint and mobile technology and processes to mature security controls •Designs and integrates consistent security solutions across on premise and cloud environments for domains like Vulnerability Management, Endpoint Security, Data Security, Network Security, Identity and Access management etc. •Champions a DevSecOps security model so that security is automated and elastic across all platforms •Works with Engineering, Infrastructure Services, and Application Development organizations to choose appropriate technology solutions and facilitates complete integration into the application environments •Evaluates and leverages server-less technology to automate security monitoring and incident response •Ensures enforcement of configurations, and enables Cybersecurity Threat Management Center (CTMC) monitoring of security on systems deployed on endpoints and mobile devices •Participates in the review of design principles and controls relating to third party cloud solution providers •Keep informed of new and emerging cloud security threats, security frameworks and regulations •Facilitates deployment of orchestration and automation with a focus on security
•A minimum of 7+ years of experience with a mix of Security, Infrastructure, Network and Cloud experience, preferably with system admin/engineer background •Extensive experience of enterprise security solutions and best practice controls for endpoints (servers, laptops, desktops) and mobile devices (phones, tablets), and including logging and application architectures •Strong technical security skills in multiple areas, e.g., application security, data security, infrastructure security, endpoint security, mobile security and cryptography •Strong knowledge of PC, LINUX and UNIX environments, with demonstrated experience in designing security solutions for Windows and Mac environments, as well as iOS, Android and other globally used mobile platforms. •Microsoft Office 365 experience is required •Proficiency with deploying nextgen security tools at scale for an enterprise environment (e.g. EPP, EDR, anti-malware, MDM, VPN, •Experience automating tasks in the cloud, particularly security automation •Proficiency with scripting (Power shell for Azure and working with the AWS Command-line) •Sound knowledge of enterprise security concepts/frameworks and products, secure design principles and patterns •Ability to visualize, articulate and solve complex technical problems •Ability to work with legal, risk, and IT teams on RFPs, and to define contract terms and SLA's to ensure security is properly embedded in mobile and endpoint services leveraged across ELC
Job: Information Technology
Primary Location: Americas-US-NY-Long Island City
Job Type: Standard
Shift: 1st (Day) Shift
Job Number: 1923137
We are an equal opportunity employer. Minorities, women, veterans, and individuals with disabilities are encouraged to apply. It is Company's policy not to discriminate against any employee or applicant for employment on the basis of race, color, creed, religion, national origin, ancestry, citizenship status, age, sex or gender (including pregnancy, childbirth and related medical conditions), gender identity or gender expression (including transgender status), sexual orientation, marital status, military service and veteran status, physical or mental disability, protected medical condition as defined by applicable state or local law, genetic information, or any other characteristic protected by applicable federal, state, or local laws and ordinances. The Company will endeavor to provide a reasonable accommodation consistent with the law to otherwise qualified employees and prospective employees with a disability and to employees and prospective employees with needs related to their religious observance or practices. Should you wish to apply for this position or any other position with the Company and you believe you require assistance to complete an application or participate in an interview, please contact USApplicantAccommodations@Estee.com.
Apply on company website