Job Description :
eCommerce Security Lead
Location: Onsite in San Francisco CA
Duration: 6+ months
Description:
This position is the services owner for eCommerce platform and information security. The position will support eCommerce business growth by managing information and availability risk to the eCommerce platform hosted in both private and public cloud environment.
This position takes a risk-based approach to business processes, systems integrity, and security to fully understand the business risk and control tolerance, and balances that against established organizational control objectives and integrity techniques.
Design, implement and maintain information security processes and procedures to protect company information assets against unauthorized internal or external use. .
Develop and implement information security controls and procedures to support:
- eCommerce information security
- Cloud platform security
- eCommerce partner security
Design system security architecture and develop detailed security designs
Configure and troubleshoot security infrastructure devices
Performance management reports and metrics
Manage security services delivered by strategic partners for eCommerce platform
Key Security Engineering Responsibilities
Provide consulting services and technical engineering / support for:
Global eCommerce Infrastructure – Provide security consulting for the application in the areas of security architecture, authentication and authorization schemes and assuring data confidentiality.
Provide for security consulting in the areas of user provisioning and maintenance, group policy designs and server hardening.
Risk Analysis – Provide for a repeatable on-going Risk Analysis process to help minimize risks associated with key mission critical applications and infrastructure components.
eCommerce Security Review – Provide for on-going Security Reviews designed to evaluate the current environment and improving the security posture.
Secure partner access and information exchange to support eCommerce partner landscape and protect consumer information shared with LS&Co partners.
Additional Job Details:
Start ASAP 6 month contract to start- potential contract to hire
Key relationships / Peers: eCommerce Business partners, Global Information Security, and LS; Co IT teams.
Education: BS degree in Computer Science or related field Experience: A minimum of 5 years’ experience in Information Security and 2+ years’ experience with cloud computing
Knowledge, Skills, &Abilities: Detailed technical knowledge of virtualized server operating systems security and security services offered by cloud and SAAS providers Hands on experience in security systems, including firewalls, intrusion detection systems, anti-virus software, authentication systems, log management, content filtering, mobile device security management, DNS, CDN, WAF
Thorough understanding of the latest security principles, techniques, and protocols with a focus on Cloud Security