Senior Information Security Engineer (Minneapolis, MN)
Department: Behaviors, Execution and Foundation
Employment Type: Full Time
Location: Minneapolis, MN
Reporting To: Dylan Barnes
Description
We're SmartThings, one of the leading IoT ecosystems in the world, creating the most effortless way for anyone to create a smart home. As a wholly owned subsidiary of Samsung, our corporate offices are based in Minneapolis and the Bay Area.
More than 300 million people worldwide use SmartThings to control and manage their connected life. SmartThings delivers simple, powerful experiences across Samsung's leading portfolio of phones, TVs, and appliances, and we offer the most versatile smart home experience as an open platform with a rich partner ecosystem. As a founding member of Matter, we are a leader in the industry to help make smart homes more secure, reliable and seamless to use.
Like the smartphone revolution, smart home technology is transforming the way we interact with the world around us. With SmartThings products, we're reducing global emissions, improving service industries, and creating a safer, smarter planet. Come be a part of the transformation with us.
About The Team
The Information Security and Privacy team at SmartThings is responsible for empowering our partners to succeed safely and securely. The world of IoT represents many new opportunities for how computers interact with the world around, and with that brings new challenges. As a Senior Information Security Engineer your role will support our ecosystem, its expansion, and growing list of new features to ensure the assets of SmartThings and our users are protected at all times.
About The Role
This role is hybrid, 3 days a week at our Minneapolis, MN office.
As a Senior Information Security Engineer at SmartThings, you will:
- Collaborate with partner teams to achieve strategic initiatives by providing security and privacy expertise.
- Assess and audit the security and compliance posture of the cloud platform against various internal and external risk and regulatory security frameworks.
- Develop and implement effective security controls for cloud-based and distributed architectures.
- Ensure necessary security controls and requirements are well understood and secure development practices are in place while empowering engineers to do their jobs confidently.
- Assess the appropriateness and effectiveness of security measures and recommend enhancements.
Skills Knowledge and Expertise
Inclusive Hiring Practices
If your skills and experience are close to what we're looking for, we encourage you to apply. We know that abilities can be developed in many different ways, and some of the most educational paths have twists and turns. Diversity of thought creates the most creative teams, and we're passionate about adding new perspectives to the conversation at SmartThings. Even if you aren't certain you meet every requirement, we encourage you to apply.
What You Bring On Day One (Required Qualifications)
- 5+ years of experience in security operations or similar experience.
- Knowledge of security principles, techniques, and technologies.
- Experience with developing and/or recommending security controls.
- Experience with one or more compliance frameworks (PCI, ISO, HIPAA, etc.).
- Ability to create system security defensive strategies for an engineering-driven environment.
- Background in a variety of security and cloud technologies.
- Integration of capability into development pipelines/continuous integration.
- Entry level Scripting/Programming skills (e.g. Bash, Python, Go).
Desired Skills
- Familiarity with AWS (EC2, Networking, Security Hub, Inspector, etc.).
- Understanding of IoT systems.
- Experience in configuring, hardening, and assessing technical resources.
SmartThings Benefits
- We offer an attractive compensation package with comprehensive health benefits, including medical, dental, vision, and mental health; an HSA with employer contribution; life & disability insurance; FSAs for health and dependent care expenses; a competitive 401k with a 5% employer match, and more.
- All of our employees enjoy unlimited PTO, 12 paid holidays, and a generous parental leave policy (8 weeks fully paid parental leave and 8 more fully paid weeks for childbirth recovery leave).
- Eligible employees benefit from our education reimbursement program, and all employees enjoy access to learning resources through O'Reilly.
- Our commitment to diversity, equity, inclusion and belonging is embedded into our culture and our work, and everyone has frequent opportunities to join forums and groups and participate in ongoing projects.
Base compensation is expected to be between $116,509 and $168,938. Additionally, this role is eligible for a 20% annual target bonus potential, depending on company and individual performance.