engineer lead – platform security engineering (Seattle OR Remote)

Job Expired

Job Number

220011980)

Job Posting

Feb 10, 2022

Job Posting End Date

Ongoing

Location

US-WA-Seattle-Starbucks Support Center

Is this role eligible for remote or hybrid work? Yes-Remote
Starbucks – Technology

Schedule

Full-time

This position contributes to Starbucks success by planning and execution of activities of a Platform Engineering Team with a strong focus on platform and application security. As engineer lead in application development and engineering, you are responsible for leading a team of software developers through planning, delivery, and operations of solutions. You are also responsible for the evolvement, delivery and support the technology strategy and roadmaps for new and existing applications and platforms. This role requires hands-on technical, domain proficiency, platform depth, and leadership. Models and acts in accordance with Starbucks guiding principles.

Summary of Key Responsibilities 
Responsibilities and essential job functions include but are not limited to the following:

Leadership – Setting goals for the work group, developing organizational capability, and modeling how we work together:

  • Leads an engineering team with Application Security focus to comply with Starbucks Global Cyber Security requirements.
    • Provide Security Architecture Design Pattern
    • Provide Security Engineering Services for common platform components
    • Provide consultative services for security issues within the application team.
    • Interface with Starbucks Cloud and Global Cyber Security teams representing our application platforms.
  • Leads the technical team through the solution design process. Leverages and develops talent on the team through all phases of project efforts, including requirements gathering, assessment and backlog refinement. Shapes and guides systems approach, manages project initiation, technical design and development efforts.
  • Ensures platform has appropriate design patterns and coding standards in place. Directs team toward secure, durable, scalable, flexible, and accessible solutions that proactively mitigate against production support issues.
  • Identifies and communicates key responsibilities and practices to ensure the immediate team of direct reports promotes a successful attitude, confidence in leadership, and teamwork to achieve business results.
  • Accountable for delivery of development and operational efforts of the team by ensuring efforts are staffed, structured, budgeted and prioritized appropriately.

Platform Stewardship – Championing platform efforts to promote platform evolvement and stability to support business needs.

  • Partners with cross functional teams, such as Infrastructure, Security, Architecture, QA and key Development teams, to strengthen and elevate the platform from a technology perspective. Successfully sees designs and solutions through enterprise processes and governance to ensure compliant, secure and supportable solutions.

Partner Development and Team Building – Providing partners with coaching, feedback, and developmental opportunities, and building effective teams:

  • Provides partners with coaching, feedback and developmental opportunities and builds effective teams.
  • Ensures partners adhere to legal and operational compliance requirements.

Production Support for application and platform components

  • Defines and maintains processes, procedures, and expectations for team’s production support responsibilities.
  • Ensures platform application and platform support documentation is in place.
  • Leads team through high severity security related operational incidents.

Basic Qualifications 

  • 7+ years of professional industry experience with software development and operations
  • 5 years of leading or managing systems or application development projects of all sizes and complexities, including large distributed systems
  • 3-5 years of leading or managing small technical teams
  • Bachelor’s degree in Computer Science or related field

Preferred Qualifications 

Technical Proficiency 

  • •Ability to lead a team of technical experts that cohesively build and operate secure, durable, flexible, accessible solutions. Requires an understanding of relevant development languages, tools, frameworks, utilities and technical dependencies.
  • Recognizes, values and champions high quality, reusable software with minimal defects on the team.
  • Working experience with product development teams in a security engineering role is highly desirable.
  • Ability to conduct web security assessments and handle vulnerability remediation of applications and web services
  • Ability to build automation tools for security processes for various application pipeline.
  • Working knowledge of application architecture, infrastructure and security concepts and technical implementation.
  • Aptitude to pick up new technologies and trends, as they become relevant for the business and our platforms. Examples include Graph DB, Big Data, REST Services, and incorporating cloud components.
  • Expert in understanding of implications from design and implementation architecture choices toward building secure, scalable, durable, flexible, accessible solutions.
  • Strong knowledge of AWS or Azure and Cloud Computing concepts
  • Strong knowledge in best practices for:
    • Security Architecture and design.
    • Data security and encryption
    • Database security.
    • Platform and infrastructure
    • Application. PaaS services
    • Monitoring, auditing, and operations
  • In-depth working experience in a DevSecOps or DevOps culture; one or more DevOps, Orchestration/Configuration Management and Continuous Integration technology (e.g. Docker/Kubernetes, Jenkins, Ansible, Terraform, ELK stack, Splunk etc.)
  • Linux (Ubuntu, CentOS, RedHat) and/or Microsoft Windows Server and associated technologies (Active Directory, Exchange etc.)
  • One or more Web and Application Server technologies (e.g. Apache HTTPD, Apache Tomcat, Nginx)
  • Networking protocols such as HTTP, DNS and TCP/IP
  • One or more version control platform (e.g. Git, Perforce, SVN, TFVC)
  • Experience managing full application stacks from the OS up through custom applications
  • Expert in analyzing and troubleshooting applications.

Domain Proficiency 

  • Broad and deep understanding of relevant platform and applications capabilities, including established API’s, system activity components, process flows, the underlying data model, implementation specifics of important business rules, batch jobs, user interface components, and application configuration.
  • Familiarity and curiosity in the business context and trends, as well as the business customers’ opportunities. Awareness of the functional aspects of the solution.
  • Secure product life cycle – Strategy, development and deployment
  • Help define overall application security strategies and procedures
  • Help define operational processes to ensure predictable software development outcomes; refine Information Security processes and procedures.
  • Develop, recommend, evaluate, integrate, deploy, and maintain security tools including security framework.
  • Evaluate software security products and technologies.
  • Develop and deploy solutions in Agile methodology, with continuous delivery processes

Interpersonal Skills 

  • Ability to lead and influence cross functional teams that include architects, analysts, developers and QA analysts
  • Ability to articulate ideas, using facts and data, for solutions to both technical and business communities
  • Excellent verbal and written communication skills
  • Ability to influence and negotiate strategy and roadmaps in planning exercises
  • Strong analytical and problem-solving skills
  • Ability to balance multiple priorities and meet deadlines
  • Ability to make timely and effective decisions using a mixture of intuition, analysis, experience and judgment

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

We are committed to creating a diverse and welcoming workplace that includes partners with diverse backgrounds and experiences. We believe that enables us to better meet our mission and values while serving customers throughout our global communities. People of color, women, LGBTQIA+, veterans and persons with disabilities are encouraged to apply.

Qualified applicants with criminal histories will be considered for employment in a manner consistent with all federal state and local ordinances. Starbucks Corporation is committed to offering reasonable accommodations to job applicants with disabilities. If you need assistance or an accommodation due to a disability, please contact us at 206-318-0660 or via email at [email protected].

More Information

  • This job has expired!
Share this job

13th Anniversary Global InfoSec Awards for 2025 now open for early bird packages! Winners Announced during RSAC 2025...

X