Tailored Brands, Inc.’s purpose is to help our customers love how they look. We accomplish this by providing a personal, convenient, one-of-a-kind shopping experience with compelling products and world-class service. We help fulfill this mission by providing our employees with an engaging and inclusive workplace focused on teamwork, growth and respect.
Position Summary
Tailored Brands is seeking a Security Engineer to play a key role in defining and implementing the enterprise strategy across corporate infrastructure on (on-prem, GCP and AWS cloud), with a strong focus on security and extending quality systems to ensure compliance with global regulatory needs. Improve resiliency of IT infrastructure and cloud.
Key Accountabilities/Responsibilities
- Implement Cloud security across multiple cloud providers including (e.g. IaaS, PaaS, SaaS), Amazon Web Services, Google Cloud and on-premises Data Centre.
- Use professional concepts and company objectives to share Subject Matter Expert support towards new and existing Cloud initiatives security systems standard for network/ application / database; providing technical support as needed on-perm and cloud.
- Develop and automate runbooks for security operations and compliance control automation.
- Maintain enterprise information security policies, technical standards, guidelines, and procedures necessary to support information security in compliance with established company policies, regulatory requirements, and generally accepted information security controls.
- Partner with engineering and operation teams to implement threat detection signals, deploy new tooling, and improve response capabilities.
- Develop and review policies related to network infrastructure including and not limited to Routing, Switches, NAC and Firewalls.
- Identify creative methods for automation of evidence collection to lend expertise to the regulatory team during audits
- Write testable and readable code in shell and python and understand provisioning tools such as CloudFormation and Terraform.
- Create requirement and design documents that account for security risks in new or existing systems with architectures to mitigate them within company risk appetite.
- Develop automation and utilize frameworks to scale both protection and mitigation tools.
- Collaborate with IT staff, architecture and business units to assess risk and address security issues
- Provide expertise and guidance surrounding cyber related issues while recommending solutions that mitigate and eliminate risk.
- Ensure that controls are in place and managed properly to meet corporate, legal and regulatory compliance on all network and system infrastructures
- Document security processes, standards, technical documents and SOPs addressing the setup, operations and support of technical infrastructure.
- Network with key contacts to create a defense in depth security model across multiple cloud providers.
- Build, design, develop, deploy, and support security software/tools that deliver security functionality and improve security efficiency and capabilities through automation.
- Ensure enterprise security best practices are followed across AWS, and GCP cloud platforms.
- Define security requirements and reviews systems to determine if they comply with established standards and develops new standards as necessary
- Validate and test security architecture and design solutions to produce detailed engineering specifications, recommend vendor technologies where applicable.