At Shipt, we are transforming the grocery shopping experience and giving time back to consumers. Our friendly shoppers handpick fresh groceries and household essentials, then deliver them to your door in as little as one hour.

Shipt is growing and we are searching for an IT Security Engineer to join our team! At a high-level, this position will be tasked with building, implementing, and supporting both current and new endpoint and network security tooling, automating incident response and access provisioning, educating employees about best-practices, and collaborating with the Shipt IT team to ensure all Shipt-owned information assets are secured properly.

What You'll Gain

You will get experience working with a cross-disciplinary team shipping real-world products to our customers around the nation. You will also receive hands-on mentorship from your friendly teammates on topics ranging from design to career advice

YOUR RESPONSIBILITIES

• Identify, validate, and remediate security vulnerabilities detected in Shipt's corporate networks and endpoints. 
• Support and monitor Shipt's current endpoint and network security platforms (HIPS, HIDS, on-premises firewalls, Anti-Virus/Anti-Malware, Email security, Mobile Device Management, etc.).
• Manage the purchase, procurement, testing, implementation and configuration of new security controls.
• Support and help expand Shipt's SSO Platform integrations and our user access management life-cycle. 
• Assist with responding to, and managing, any Security Information Gathering (SIG) questionnaires and/or any required compliance audits or maturity assessments from 3rd parties.
• Educate our users on cyber security best practices and manage our cyber security awareness training and phishing assessment programs.
• Communicate effectively and perform due diligence to get to the root cause of any issue.
• Assist with the design, development, documentation, and enforcement of new and existing information security processes, procedures, and policies.
• Collaborate with the Shipt IT and HR teams to ensure IT asset management and employee on-boarding/off-boarding life-cycle(s) are secured. 
• Participate in an on-call rotation as needed for supporting both local and remote users.

REQUIREMENTS

• You have at least 2 years experience in an endpoint security, network security, or general security-focused IT support role. 
• Working understanding of firewalls, proxies, SIEM, Antivirus, IDS, and DLP concepts.
• Working understanding of at-rest and in-transit encryption protocols and best-practices. 
• Expertise in designing and hardening endpoints and network devices. 
• Experience in system administration, supporting multiple platforms and applications.
• Experience with planning, researching and developing security policies, standards and procedures.
• You have experience with a broad range of technologies and operating systems.
• You have a BS in Engineering, Computer Science or equivalent experience.

NICE TO HAVES

• You have a passion for security and ethical hacking.
• Extensive experience with MacOS.
• Experience with the Okta SSO platform.
• Experience with AlienVault USM Anywhere SIEM
• Experience automating reporting and other tasks using security tool APIs and/or scripting with Ruby, Python, Javascript, Go, or bash.
• Security certification(s) such as CISSP, CEH, Security+, etc.
• You can work in a fast-paced company that is changing constantly.
• You are excited to learn and master new skills.
• You have a deep love for automation.

We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.

Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.