Call Center Jobs

CallCenterJobs.com
Employers | Candidates
Search Jobs

View Job

Manager Security Engineering

02/05/2019Call Center
Job Location:
Chicago, IL
Metro Area:
IL - Chicago
Company Name: Grainger
Website:  Click to Visit
Grainger

Grainger is North America's leading Maintenance Repair & Operating provider and we are the 10th largest North American E-commerce player with over 50% of our revenue coming from online transactions. Within the Enterprise Systems team we use technology to support the ever-changing and dynamic needs of a supply chain carrying 1.5 million products and an employee base of 25,000+; and we are committed to delivering technical solutions to support the business in its mission to stay atop. We deliver technology solutions across the enterprise including our call centers, branch network, sales, and our various digital channels. The team supports over 1000 applications across the network and operates in an agile environment to deliver complex solutions quickly and seamlessly. The team of 500+ is comprised of Infrastructure + Operations, Cyber Security, Technology Planning, Architecture and Engineering and are built in a way to support the dynamic and ever changing customer landscape.

Key Technologies / Framework: Java, J2EE, Ruby on Rails, RDBS, NoSQL, Lucene, SOLR

The Application Security Leader is responsible for the analysis, evaluation, and execution of an ideal application security offering that integrates development activities, information security, and the automated release methods within the CI/CD pipeline.  The Application Security Leader serves as the foremost security representative who partners with our development teams, leaders, and product lines to provide consultative guidance, insight, and feedback as new technologies or products are explored.  Ultimately, the successful candidate has a strong sense of development lifecycles and information security, all accompanied by a highly personable, strong communicator with distinct relationship building experience.  Of high importance is to note that this role is key in the app sec definition space, it requires a self-motivated individual who can execute, refine, mature, and report on a program without specific guidance or instruction.

SCOPE

Expert Professional-Manager- Leader

DEFINITION

 The Application Security Leader is responsible for the analysis, evaluation, and execution of an ideal application security offering that integrates development activities, information security, and the automated release methods within the CI/CD pipeline.  The Application Security Leader serves as the foremost security representative who partners with our development teams, leaders, and product lines to provide consultative guidance, insight, and feedback as new technologies or products are explored.  Ultimately, the successful candidate has a strong sense of development lifecycles and information security, all accompanied by a highly personable, strong communicator with distinct relationship building experience.  Of high importance is to note that this role is key in the app sec definition space, it requires a self-motivated individual who can execute, refine, mature, and report on a program without specific guidance or instruction.

Responsibility

Responsible for a location/department or multiple small projects.

Accountability/ Results

Accountable for the individual performance and results or that of a team.

Level of Contact

Has frequent contact inside and outside of location/department at various management levels and with customers/suppliers concerning operations or project delivery.

Participates in and may lead cross- functional projects.

Reporting Relationship

Typically reports to a Sr Manager or Director.  May supervise individual contributors or be an individual contributor.

Financial

Executes against a defined department budget/P&L.

Leadership

Responsible for hiring and developing individual contributors.

PROBLEM SOLVING & DECISION MAKING

Expert Professional-Manager

DEFINITION

 The suitable individual for this role is highly analytical and able to approach development / security challenges with a multi-faceted approach; understanding there are a multitude of approaches to expedite delivery timelines while enforcing security requirements along the journey.  With enough experience and ability to grasp key technologies and security controls, this individual is empowered to make security-based decisions as needed to further enable expedient solution delivery across the organization.  Aside from establishing the foundational requirements and associated consult, support, and analysis, this function serves to quantify and qualify security parameters in the development space for ongoing reporting.  Additional roles will support this function to assist not only in the functions described, but to also support code scanning activity, secure-code training, incident and investigative root cause analysis support, and documentation / automations.

Complexity

Provided tasks and general objectives. Independently solves problems within functional areas of expertise.

Decision-Making Authority

Problems encountered have a limited solution set and decisions are guided by processes, procedures and business plans.
70% solving routine problems with precedent/30% creating new solutions.

Delegation

Typically accomplishes results through lower level subordinate supervisors or through experienced exempt employees who exercise latitude and independence in their assignments.

Impact

Decisions or recommendations are specific to location/ department.

ACCOUNTABILITY & IMPACT

Expert Professional-Manager

DEFINITION

 The importance of this role drives the associated accountability and impact.  The environment is fully supportive and in need of the skill set defined within the job description, as such, the role is expected to serve as a key contributor in an out-of-the-box approach.  From an Information Security interest, this role is expected to fully grasp the concepts behind security controls and how they apply to application development, web presence and the like.  This individual is accountable for identifying weaknesses in our security posture within the application or web space while defining methods to achieve security control requirements via automation or highly efficient means that further support timely delivery and minimal overhead.

Business Processes

Manages staff in the development and implementation of department processes, procedures and programs. Ensures adherence to Company processes, procedures and government regulations concerning the department.

Goals/ Objectives

Impacts the achievement of mid- and short-term goals through decisions and others.  Ensures that objectives and medium scale projects are completed on schedule and within budget.

Translates facility/department goals to specific operational objectives and communicates priorities and a sense of urgency.

Influence/ Negotiation

Occasionally, must influence or negotiate across departments to accomplish objectives.  Impacts individual department or larger functional group.

KNOWLEDGE & SKILLS

Expert Professional-Manager

DEFINITION

 As the focal person for Application Security, the individual will have robust training, experience, and background in both Information Security and the Application Development lifecycles / approaches / languages / and tools.  Previous experience in defining organization-wide processes and methodologies, a proven leadership style, customer-service oriented demeanor, problem solving, effective reporting via metrics and indicators, and strong communications are all essential to this function.  Additional insights, experience or background in any of the following are also of great value: NIST, ISO27001, Data Protection, Java Development, AppSec, Static Code Analysis, Dynamic Code Analysis, PEN Testing, AWS, Containers, MicroServices, CI/CD Pipeline, Agile, Sprints / Scrum Masters, GitHub, Black Duck, WhiteHat, Veracode, Jira, Docker, cloud security and design, people leadership, process maturity, and other related focuses.

Technical and Managerial Expectations

Role is balanced between managerial capabilities and technical expertise.

Education

Typically bachelors degree or equivalent experience.

Business Acumen

Has in-depth knowledge of the business and consults with clients/customers to attain results or solve industry problems.

General Experience

Previous project mgmt or lead experience beneficial.

 
Apply Online Back