Nordstrom is a fashion specialty retailer founded on a simple idea: offer each customer the best possible service, quality, value and selection. We are looking for a results-oriented individual to partner with our application teams to support business-critical systems.
At Nordstrom, providing great customer service goes beyond the selling floor. It takes a team of individuals with different talents and skills to continuously improve service and our results. Our Information Technologies (IT) division works in partnership with other areas of the Company to develop and support the business systems used throughout Nordstrom. When you join our team, you are welcomed into a family dedicated to creating memorable and rewarding shopping experiences for our customers.
The ideal secure development engineer is able to work closely with technology and business partners to help set the direction of secure development solutions for the Company.
Responsible for secure development platform, tools and supporting processes. Enable and support integration with development tools and processes
Participate in the selection and adoption of secure development tools and methodologies
Manage secure development engagements with technically diverse development teams. Facilitate the review and remediation of secure code scan findings. Recommend alternatives and make recommendations based on secure development best practices
Participate in research and development activities, focusing on emerging secure development technologies and practices with potential benefit
Collaborate with architects and developers to design and develop secure solutions across multiple technologies and platforms
Evangelize strategic direction on enterprise secure development best practices and the implementation of appropriate safeguards and controls
Partner with QA team to develop and maintain risk-based security test cases for new and existing applications
Assess and actively participate in the review of threat models for application projects and influence the direction of these architectures to meet established security and secure development best practices.
Participate in the review of application deliverables for development projects and provide detailed security recommendations supporting enterprise security policies and secure development best practices
Work with customers and security staff to define penetration testing strategies and perform pre and post deployment application penetration testing. Compile findings and proposed resolutions for presentation to customers
Develop hands on awareness of new trends in secure development technology and methods and how they should be implemented
Provide input into best practices for secure software development and architecture at Nordstrom
Participate in defining the secure development strategy and direction for Nordstrom
Mentor security engineers, application architects and development teams in secure development best practices
Bachelor's degree in computer science, engineering or related discipline/experience preferred
Minimum of 4 years experience in the securing, development, implementation and maintenance of large-scale application systems across multiple platforms
2-4 years implementation experience with commonly accepted industry standards and best practices relating to security and secure development, including SDL,OWASP, COBIT, ISO 17799/13335, ITIL, CMM, NIST publications, PCI Best Practices, etc.; specific experience in driving an enterprise secure development project based on these practices a plus
SANS, GSSP or comparable certification desired
Experience with IBM AppScan, Veracode, Checkmarx FxCop, Jenkins, Jira, Quality Center and MS Threat & Analysis tools a plus
Significant experience on large-scale system development projects in multiple development roles.
Current experience leading the secure development effort for a variety of system delivery projects, including enterprise-class systems
Proven ability to collaboratively plan, document, and present secure development best practices
Deep understanding of security technologies and methods as they apply in an enterprise environment
Broad understanding of IT technologies, including languages, technical architectures, testing methodologies, databases, system design, and modeling. Excellent understanding of the Secure Development Lifecycle (SDL) and Software Development Life Cycle (SDLC)
Familiarity with IT operations and related technologies
Broad understanding of retail business processes, business applications, data flow and requirements.
Excellent analytical, problem solving and decision making skills
Strong planning and organizing skills
Excellent interpersonal skills, including comprehension, conflict resolution, teamwork and relationship building
Ability to take initiative and motivate
Strong creativity and innovation
Strong verbal and written communication skills
Since 1901, Nordstrom has offered a wide variety of quality apparel, shoes and accessories for men, women and children at our stores across the country. We're proud to be named to
magazine's list of '100 Best Companies to Work For.' We believe this recognition comes from our desire to empower our employees to set their sights high and deliver exceptional service to customers.
As a Nordstrom employee, you can feel confident that your health and well-being are among our highest priorities. We offer a comprehensive, flexible employee benefits package that includes medical/vision and dental coverage, a generous merchandise discount, an employer-matched 401(K) savings and profit sharing plan and much more.
We are an equal opportunity employer committed to providing a diverse environment.
The above information has been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities and qualifications required of employees assigned to this job.
Nordstrom - 19 months ago
Nordstrom, Inc.is a fashion specialty retailer that offers a selection of apparel, shoes, cosmetics and accessories for women, men and...