Costco IT is responsible for the technical future of Costco Wholesale, the third largest retailer in the world with wholesale operations in fourteen countries. Despite our size and explosive international expansion, we continue to provide a family, employee centric atmosphere in which our employees thrive and succeed.

This is an environment unlike anything in the high-tech world and the secret of Costco’s success is its culture. The value Costco puts on its employees is well documented in articles from a variety of publishers including Bloomberg and Forbes. Our employees and our members come FIRST. Costco is well known for its generosity and community service and has won many awards for its philanthropy. The company joins with its employees to take an active role in volunteering by sponsoring many opportunities to help others.

Come join the Costco Wholesale IT family. Costco IT is a dynamic, fast-paced environment, working through exciting transformation efforts. We are building the next generation retail environment where you will be surrounded by dedicated and highly professional employees.

As a member of the IT Management Team, you are responsible for managing, developing, and leading a team of employees. Your role includes leading the specific functional responsibilities of your team, which involves overseeing team performance and deliverables. However, your role as a leader within our organization requires more than the management of resources and day-to-day operations. As a steward of the company, you are charged with the development and execution of your team’s strategic vision and plan and ensuring that your team’s actions align with the larger goals of the company and the IT Division.

The Security Engineering Manager is responsible for managing and enhancing the organization’s endpoint, email and iSeries security posture. This role involves developing and implementing security policies, overseeing security technologies, and responding to endpoint, email, and iSeries based threats. The ideal candidate will have a deep understanding of broad security protocols, tools, and best practices, as well as experience in threat detection and response.

As the primary conduit between your employees and upper leadership, your role in communicating and modeling the values and guiding principles of our company culture is of vital importance. All members of Information Security Management should strive to consciously and consistently foster a culture of engagement, trust, and “open door” communication.

If you want to be a part of one of the worldwide BEST companies “to work for”, simply apply and let your career be reimagined.

ROLE

● INTEGRITY: When achieving benchmarks and goals, use methods/strategies that are consistent with the Code of Ethics and the Standard of Ethics for Managers and Supervisors. Always leads by example. Appropriately handles employee concerns and follows through to resolution.

● MEMBER SERVICE: Provides and ensures staff provides an exceptional member experience.

● ADMINISTRATION: Ensures proper department coverage (writing schedule and break aids if needed). Understands department budget, able to research and explain budget variances.

● MANAGING PERFORMANCE: Coaches and mentors employees to provide support and guidance. Has regular open and honest conversations with employees to discuss work performance and career development. Identifies learning opportunities to strengthen employee knowledge, skill and ability.

● COMMUNICATION: Regularly shares information with employees via meetings and one-on-one conversations. Successfully navigates difficult conversations with employees, members, and suppliers. Listens, expresses empathy and adapts to get points across. Addresses issues immediately to ensure a timely resolution and to avoid escalating the situation. Consistently demonstrates business knowledge during interactions with senior management.

● SELF-MANAGEMENT: Demonstrates sound judgment, taking a partner when necessary. Ability to maintain self-control in the face of hostility or provocation or in intense, hectic situations.

● INCLUSION: Encourages different approaches and ideas to work and to accomplish goals. Seeks employee input. Takes the time to get to know or reach out to candidates who show potential that may not come forward on their own.

● COMPLIANCE AND SAFETY: Takes measures to ensure employee and member information is kept confidential and adheres to IS security policy.

● Develop and implement comprehensive endpoint, email, and iSeries security policies and procedures.

● Ensure endpoint, email, and iSeries security policies align with industry best practices and regulatory requirements.

● Conduct regular reviews and updates of endpoint, email, and iSeries security policies.

● Manage and maintain endpoint, email, and iSeries security solutions such as Secure Email Gateways (SEGs), anti-phishing tools, email encryption technologies, endpoint detection and response (EDR), antimalware, application allowlisting and system hardening.

● Evaluate and recommend new security technologies and solutions.

● Oversee the configuration, deployment, and maintenance of security tools.

● Monitor and analyze suspicious activities and potential threats.

● Respond to endpoint, email, and iSeries based security incidents.

● Collaborate with other information security teams, IT departments, and business units to ensure a cohesive approach to information security.

● Prepare and present regular reports on security metrics, incidents, and improvements to senior management.

● Participate in security audits and assessments related to endpoint, email, and iSeries security.

● Stay current with the latest security threats, trends, and technologies.

● Continuously assess and improve the organization’s security posture.

● Participate in industry forums and professional networks to share knowledge and learn from peers.

● Translates business goals into security practices, policies, standards, guidelines, and procedures to support corporate information security.

● Monitors new and emerging security, compliance and privacy related requirements, technologies, trends, issues, and solutions and assesses their applicability to Costco Wholesale’s key business initiatives and business strategies.

● Provides advice and consulting to senior management and the organization in the development, implementation, and administration of actions to meet these emerging requirements.

● Coordinates and monitors information security activities throughout the organization, including the preparation of periodic status and progress reports to applicable parties, leadership teams, and stakeholders.

● Hires, trains, and mentors Information Security team members.

● Responsibility for leading the team in developing and driving KPI’s and metrics.

● This is a full-time management/leadership position (45+ hours per week).

Required:

● Ability to define, communicate and execute on a vision and strategy

● Conversant in technology matters related to security, architecture, emerging InfoSec trends, compliance, and risk

● Must have experience managing and knowledge of industry standard security products

● Demonstrates the ability to drive remediation of security vulnerabilities, misconfigurations, and policy violations

● Knowledge of managing and coordinating security stacks across multiple cloud or on premises environments

● Demonstrates ability to manage and direct deployment of security tools and technologies

● A deep understanding of cybersecurity threats, vulnerabilities, controls and remediation strategies in global enterprise environments

● Ability to effectively communicate the need for security tooling and technologies to all levels of the organization

● Excellent communication skills, both oral and written, that can communicate security and compliance issues to executives, end users, and security experts in an effective and appropriate manner

● Outstanding customer/client relations skills to ensure that security and business objectives are always in alignment and a flexible and business-oriented focus on security matters

● Must be extremely responsive, with a strong sense of urgency

● Able to work well under stress and handle crisis situations professionally

● Must be prepared for 24x7x365 operations - Evenings, weekends, and holiday work may be required, at times.

● Able to support off-hours work as required, including weekends, holidays, and 24/7 on call responsibilities on a rotational basis

● International travel may be required

We offer a comprehensive package of benefits including paid time off, health benefits - medical/dental/vision/hearing aid/pharmacy/behavioral health/employee assistance, health care reimbursement account, dependent care assistance plan, short-term disability and long-term disability insurance, AD&D insurance, life insurance, 401(k), stock purchase plan to eligible employees.

Costco is committed to a diverse and inclusive workplace. Costco is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or any other legally protected status. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request to IT-Recruiting@costco.com

If hired, you will be required to provide proof of authorization to work in the United States. Applicants and employees for this position will not be sponsored for work authorization, including, but not limited to H1-B visas.

Required:

Recommended: