Senior Security Engineer
Sleep Number
Company Overview
Sleep Number is a sleep wellness technology leader. For nearly four decades, we have placed sleep at the center of wellbeing, improving over 15 million lives with our Sleep Number smart beds. We are guided by our purpose – to improve the health and wellbeing of society through higher quality sleep. This is exemplified through our 4,000+ mission-driven team members who passionately innovate to drive value creation through our vertically integrated business model, owning the process from start to finish, including selling in our over 650 stores nationwide.
Our team members are encouraged to bring their whole selves to work, sharing their unique perspectives, backgrounds and skills with Sleep Number every day. Whether you are entering, returning or experienced in the workforce, we have a place for you. We hope you join us in creating the future through higher quality sleep.
Position Purpose
The Senior Security Engineer provides a lead role in the development of Sleep Number’s cyber defense capability. This position will define strategy and drive the implementation of solutions to protect Sleep Number against unauthorized activity. The ideal candidate has experience in Security Incident and Event Monitoring (SIEM), Vulnerability Management, Network Detection and Response, Web Application Firewalls, Cloud Security, Security Posture Management, Endpoint Detection and Response, and Zero Trust principles.
Primary Responsibilities
+ Responsible for the definition and execution of the Information Security technology strategy
+ Owns the integration of information security concepts into IT product roadmap such as end user computing, hosting, cloud and network
+ Product owner for the cyber defense portfolio, including but not limited to:
+ SIEM
+ Network Detection and Response
+ Vulnerability Management
+ Log Collection and Analysis
+ Cloud Security
+ Web Application Firewall
+ Cloud Security Posture Management
+ Endpoint Detection and Response
+ Secure Internet Services
+ Design, implement and operate administrative and technical security controls
+ Own the creation and implementation of security solutions on behalf of the enterprise
+ Seeks methods to bring efficiencies and automation to increase the value of security controls
+ Proactively engage partners across technology teams to learn about Sleep Number’s environment. Build productive working relationships.
+ Participate in Incident Response analysis and investigations.
+ Maintain quality documentation for meaningful consumption by others.
+ Foster an environment of continuous learning, high engagement and champion diversity, inclusion, and respecting individuality of all team members
+ Serve as point of contact for key vendor relationships
+ Mentor and cross train team members
Key Performance Indicators
+ Successful implementation of new security capabilities
+ Timely management and operationalization of security capabilities
+ Identification of key information technology risk
Position Requirements
+ Bachelor’s degree in related field or equivalent experience required
+ 10+ years of information security experience required
+ Strong organizational skills with ability to thrive in a sense-of-urgency environment, navigate ambiguity, leveraging best practices, and approaching any problem as a team-player with a can-do attitude.
+ Experience in administering, operating, and improving industry SIEM solutions, such as Splunk ES.
+ Strong written and verbal communication skills and ability to interface with all levels of business and executive leadership.
+ Demonstrated ability to influence decisions by identifying risks and opportunities
+ Must be a creative problem solver, flexible, proactive, and work in a fast paced, ever-changing environment.
+ Demonstrated knowledge of a broad range of technical concepts: firewall rule configuration, network segmentation, network intrusion detection and response, security vulnerability scanning, proxy services, security architecture frameworks and methods
+ Demonstrated experience and Knowledge of the Splunk Common Information Model (CIM). Splunk ES
+ CISSP Certification preferred
Knowledge, Skills & Abilities
Required:
+ Knowledge of information security management system standards, frameworks (ISO 27001, NIST CSF), MITRE ATT&CK, Cyber Kill Chain, and industry best practices.
+ Knowledge of cyber threats and counter measures
+ Broad knowledge across information technology infrastructure and application domains
+ Ability to manage, organize and prioritize workload to meet deadlines
+ Knowledge of cyber-attack stages (e.g., MITRE ATT&CK Framework, tactics, techniques and procedures for conducting reconnaissance, scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation, covering tracks).
+ Knowledge of the common attack vectors on the network layer.
+ Knowledge of different classes of attacks (e.g., passive, active, insider, close-in, distribution attacks).
+ Knowledge of relevant laws, legal authorities, restrictions, and regulations pertaining to cyber defense activities.
+ Skill in collecting data from a variety of cyber defense resources.
+ Skill in recognizing vulnerabilities in security systems. (e.g., vulnerability and compliance scanning).
Desired:
+ Demonstrated experience in writing threat detections, threat correlation, and log normalization within a SIEM (e.g., Splunk, Sentinel)
+ Experience with Network Detection and Response capabilities (e.g. Darktrace, Extrahop, Gigamon)
+ Experience in Cisco ASA, Palo Alto Firewalls, or equivalent technologies
+ Experience with Vulnerability Management capabilities (e.g. Tenable, Qualys, Rapid7)
+ Experience with Zscaler Internet Access and Zscaler Private Access or equivalent technologies.
+ Experience with modern web application architecture and how to secure it (OWASP, SANS Top 25).
+ Experience with EDR capabilities (e.g. MSFT Defender, Trend Micro))
+ Experience with Cloud Security Posture Management (e.g. MSFT Defender for Cloud, Wiz, Orca)
+ Demonstrated knowledge of a broad range of technical concepts: firewall rule configuration, network segmentation, network intrusion detection and response, security vulnerability scanning, proxy services, security architecture frameworks and methods
+ Strong organizational skills with the ability to thrive in a sense-of-urgency environment, navigate ambiguity, leveraging best practices, and approaches problems as a team-player with a can-do attitude
+ Strong oral and written communication skills required, including a natural ability to tailor communication to various audiences.
+ Comfort with scripting languages to automate tasks and integrate systems.
+ Experience implementing controls against various Frameworks such as NIST CSF, HIPAA, HITRUST, ISO-27001 and SOC-2
Working Conditions
+ Monday through Friday
+ Rotational On-call
+ Off hours Production maintenance windows.
+ Hybrid work environment
#PIQ
Salary Pay Range: $116,300.00 -$155,100.00
Wellbeing
Wellbeing is more than a catchphrase - it's a movement that permeates our company and through our team members. We are dedicated to enhancing and supporting the wellbeing of our team members and their families through benefits, programs, and resources across our five wellbeing pillars of emotional, financial, career, community, and physical health, with sleep at the center.
By joining our team, in addition to offering competitive pay programs, we are proud to offer eligible team members an extensive benefits package including, but not limited to medical and pharmacy benefits, dental, life and disability insurance, a matched 401(k) Plan, paid time off, and much more.
Safety
Safety is a top priority for Sleep Number supporting customers and team members wellbeing. We are committed to maintaining a safe and healthy work environment for all team members that are consistent with CDC guidelines, U.S. Department of Labor’s Occupational Safety and Health Administration (OSHA), and state/local laws.
EEO Statement
Sleep Number is an equal opportunity employer. We are committed to recruiting, hiring and promoting qualified people and prohibit discrimination based on race, color, marital status, religion, sex (including gender, gender identity, gender expression, transgender status, pregnancy, childbirth, and medical conditions related to pregnancy or childbirth), sexual orientation, age, national origin or ancestry, citizenship status, physical or mental disability, genetic information (including testing and characteristics), veteran status, uniformed servicemember status or any other status protected by federal, state, or local law.
Americans with Disabilities Act (ADA)
It is Sleep Number’s policy to provide reasonable accommodations to qualified individuals with disabilities during the application process, consistent with applicable law. We may require supporting medical or religious documentation where applicable and permissible by law. If you are a qualified individual, you may request a reasonable accommodation at any time during the selection process, including if you are unable or otherwise limited in your ability to access open roles here.
Confirm your E-mail: Send Email
All Jobs from Sleep Number