Principal (IR) Cyber Security Incident Response Engineer

ABOUT THE ROLE

We are a CLOUD 1st environment.  Stitch Fix is looking for a Principal IR Engineer to help with security initiatives, Incident Response and implementing best practices in the areas of infrastructure, network security, and cloud environments, as well as compliance and policy.

The individual in this role will be part of the Security Team and work closely with the various Platform and Development teams. The candidate should have strong experience with Incident Response, container technologies, and deployment and integration patterns in a production AWS environment. 

Our team members are given a great deal of autonomy in the pursuit of keeping Stitch Fix secure, and the successful candidate will demonstrate strong communication skills. They should be comfortable and productive, working independently, partnering with a larger, highly distributed engineering team.

We’re looking specifically for folks who emphasize usable security. Stitch Fix is a fast-growing company, and our security program needs to be able to keep pace with that growth while not disrupting innovation. 

REQUISITE SKILLS AND EXPERIENCE

Your skills are broad - building, deploying, and maintaining security services in an organization, and serving as the Subject Matter Expert for cloud security throughout the development lifecycle.

• Minimum 10 years in Security, preferably in an Incident Response role or similar “first responder” role (Trust and Safety, Fraud, Account Protection, etc) 
• AWS Experience is a MUST
• Demonstrated experience with analysis, leading, and documenting Security Incidents 
• Demonstrated experience with cyber security incident lifecycle acting as an incident commander
• Demonstrated experience with common logging software (Splunk, SumoLogic, Datadog or similar) at proficient to expert level 
• Demonstrated experience with EDR solutions (Crowdstrike, etc) at proficient to expert level 
• Understanding of common adversarial tools and techniques and IOCs (Indicators of Compromise) 
• Familiarity with APT groups and TTPS 
• Demonstrated capability to follow and drive response outcomes
• Strong ability to be calm “under fire” and drive solutions in a time-sensitive environment when under stress or urgency
• Strong written communication skills when completing post-mortems
• Ability to partner and demonstrate soft skills to influence outside of the Security organization and encourage cooperation and resolution during security events
• Strong experience with AWS security services (Security Hub, GuardDuty, Macie, etc.)
• Ability to mentor and develop junior team members
• Capable of working with common CI/CD technologies
• Knowledge of common development practices and tools
• Experience with Docker
• Experience with Infrastructure as Code
• Have proficient expertise with scripting languages e.g python etc.. 
• Minimum of 6 years supporting production AWS environments

ABOUT THE TECHNOLOGY

Technologies we rely on to pursue solutions to business problems include:

• Ruby on Rails
• Golang
• CircleCI
• Docker
• AWS / ECS
• HashiCorp Terraform
• Python 
• Jira
• AWS / Lambda
• DataDog
• CrowdStrike 

Even if you already have experience with these tools, you'll have the chance to get even better with them. And if you don't already use at least a few of these tools, we will help you learn and become effective with them.

WE ARE EXCITED ABOUT YOU BECAUSE...

• YOU ARE ENTHUSIASTIC ABOUT SECURITY. You will collaborate to build interesting security solutions using the appropriate tools and contribute to design and architecture across multiple systems. You want to build on your experience and help us to adopt new technologies. You'll learn from us, and we'll learn from you. You care deeply about the fighting to secure our clients and our employees from threats.
• YOU ARE INTERESTED IN BEING A FIRST RESPONDER. You should strongly believe that every second matters during a security event or incident, and you’re the first to jump in to do the hard work required to keep us safe.
• YOU ARE ENTHUSIASTIC ABOUT TECHNOLOGY. You will collaborate to build solutions using the appropriate tools and contribute to design and architecture across multiple systems. You want to build on your experience and help us to adopt new technologies. You'll learn from us, and we'll learn from you. You care deeply about the experience you are delivering.
• YOU HAVE A PRODUCT-FOCUSED MINDSET. Our team works together to deliver projects that use technology to solve real business problems. Your team members and business partners will seek out your opinion on how the product you’re building should work. You aren’t afraid to dig deep and ask the tough questions of our customers, company, and executive team.
• YOU ARE INTERESTED IN DEVELOPING YOUR LEADERSHIP QUALITIES. You should believe in what you’re doing and inspire others around you to be their best selves? Do you feel ownership of the projects you are working on?
• YOU HAVE DEEP RESPECT FOR YOUR CRAFT. We are dedicated to building software sustainably, using modern techniques. You're always looking for more and better ways to write software, and enthusiastic about sharing them with your team.
• YOU ARE RESPECTFUL, EMPATHETIC, AND HUMBLE. We want you to take your work seriously and be open to personal and professional growth. Successful engineers show everyone respect and consideration.

WHY YOU'LL LOVE WORKING AT STITCH FIX...

• We are a group of bright, kind people who are motivated by challenge. We value integrity, innovation and trust. You’ll bring these characteristics to life in everything you do at Stitch Fix.
• We cultivate a community of diverse perspectives— all voices are heard and valued.
• We are an innovative company and leverage our strengths in fashion and tech to disrupt the future of retail. 
• We win as a team, commit to our work, and celebrate grit together because we value strong relationships.
• We boldly create the future while keeping equity and sustainability at the center of all that we do. 
• We are the owners of our work and are energized by solving problems through a growth mindset lens. We think broadly and creatively through every situation to create meaningful impact.
• We offer comprehensive compensation packages and inclusive health and wellness benefits.

ABOUT STITCH FIX

We're changing the industry and bringing personal styling to every body. We believe in a service and a workplace where you can show up as your best, most authentic self. The Stitch Fix experience is not merely curated—it’s truly personalized to each client we style. We are changing the way people find what they love. We’re disrupting the future of retail with the precision of data science by combining it with human instinct to find pieces that fit our client’s unique style. This novel juxtaposition attracts a highly diverse group of talented people who are both thinkers and doers. This results in a simple, yet powerful offering to our customers and a successful, growing business serving millions of men, women and kids throughout the US. We believe we are only scratching the surface and are looking for incredible people like you to help us boldly create our future. 

Compensation and Benefits

Our anticipated compensation reflects the cost of labor across several US geographic markets, and the range below indicates the low end of the lowest-compensated market to the high end of the highest-compensated market. This position is eligible for new hire and ongoing grants of restricted stock units depending on employee and company performance. In addition, the position is eligible for medical, dental, vision, and other benefits. Applicants should apply via our internal or external careers site.Salary Range$234,000—$250,000 USD

This link leads to the machine readable files that are made available in response to the federal Transparency in Coverage Rule and includes negotiated service rates and out-of-network allowed amounts between health plans and healthcare providers. The machine-readable files are formatted to allow researchers, regulators, and application developers to more easily access and analyze data.

Please review Stitch Fix's US Applicant Privacy Policy and Notice at Collection here: https://stitchfix.com/careers/workforce-applicant-privacy-policy

Recruiting Fraud Alert: 

To all candidates: your personal information and online safety are top of mind for us.  At Stitch Fix, recruiters only direct candidates to apply through our official career pages at https://www.stitchfix.com/careers/jobs or https://web.fountain.com/c/stitch-fix.

Recruiters will never request payments, ask for financial account information or sensitive information like social security numbers. If you are unsure if a message is from Stitch Fix, please email RecruitingOperations@stitchfix.com. 

You can read more about Recruiting Scam Awareness on our FAQ page here: https://support.stitchfix.com/hc/en-us/articles/1500007169402-Recruiting-Scam-Awareness