Stitch Fix

Principal Security Engineer – Vulnerability Management

Stitch Fix

full-time

Posted on:

Location Type: Remote

Location: CaliforniaUnited States

Visit company website

Explore more

AI Apply
Apply

Salary

💰 $120,000 - $200,000 per year

Job Level

Lead

Tech Stack

AWSCloudDockerPythonTerraform

About the role

  • Collaborate to develop innovative security solutions, leveraging the right tools while contributing to design and architecture across multiple systems
  • Work closely with the team to develop effective solutions, leveraging the right tools while contributing to design and architecture across multiple systems
  • Be the first to step in, tackle challenges head-on, and do what it takes to protect and secure our organization
  • Ensure that technology solutions address real business challenges

Requirements

  • 6+ years of experience in Security, preferably in a Vulnerability Management or similar role
  • Experience leading and assisting with Vulnerability remediation, documentation, and leading remediation efforts
  • Proficient with the vulnerability management lifecycle and hands on involvement in orchestrating automated solutions
  • Understanding of common risk, attack techniques, and exploitability such as supply chain attacks
  • Intermediate to advanced knowledge of APT groups, TTPs (Tactics, Techniques, and Procedures)
  • AWS experience is required; familiarity and high degree of proficiency with AWS services
  • Hands-on experience with AWS environments, particularly in a security context; familiarity with AWS security services
  • Hands on working knowledge of Infrastructure as Code (IaC) concepts and tools such as Terraform and Docker
  • Understand the use of CI/CD pipelines and their role in a security context
  • Experience optimizing and integrating solutions (e.g., Jira, JupiterOne, PaloAlto Prisma)
  • Proficient with scripting languages such as Python
  • Proficient with infrastructure as code in Terraform, or Pulumi, or Cloud Formation
  • Strong written communication skills for security documentation and reporting
Benefits
  • Comprehensive compensation packages
  • Inclusive health and wellness benefits
  • Annual bonus eligibility
  • New hire and ongoing grants of restricted stock units
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
Vulnerability ManagementVulnerability remediationAWSInfrastructure as CodeTerraformDockerCI/CD pipelinesScripting languagesPythonCloud Formation
Soft Skills
CollaborationProblem-solvingLeadershipCommunication