Loading...
Share this Job
Apply now »

Security Engineer (Product Security Operations) Job

We Light the Way!

 

Acuity Brands (NYSE: AYI) is transforming the lighting industry. We take pride in our 12,000 employees, and they take pride in working with the best in the industry.  Join a team committed to lighting the way to a more brilliant, connected, and productive world.  Individually we are talented, but together we are unstoppable.  

About this Team

Have you ever entered a building and been immersed in a sea of lights and noticed the shades automatically adjust? Have you experienced a smart environment that has personalized lighting for different settings and occasions? Modern lighting and controls are everywhere, transforming how we interact with our digital world. The Product Security Architecture Team ensures that intelligent lighting solutions are free from issues that can be exploited by attackers to compromise people’s privacy and safety. 

Acuity Brands is the North American market leader in innovative lighting solutions. Our lights are computing, sensing, network connected platforms. They are everywhere there are people. Combining technology with ubiquitous lighting infrastructures, we are perfectly positioned to transform the world of IoT. And, we have plenty of awesome projects to work on! Our team is expanding and looking for a security engineer to help in our endeavors.
 

How you will contribute:

We're seeking a talented security engineer to join our security team. In this role, you will be a core member of our product security architecture and operations team, which is responsible for identifying and managing security issues, and driving compliance across the company. You will be working closely with other members of the engineering teams in order to manage risks identified by external researchers, internal testing efforts, as well as from automated security testing tools. You will be responsible for monitoring internal/external threats, analyzing potential vulnerabilities within the internal and cloud environments, and participate in risk reviews.

  • Leverage your organization skills, technical acumen, and communications skills as a member of security team to determine the impact of security issues and establish action plans to remediate security risks
  • Review reports of anomalies detected in our cloud infrastructure, analyze security incidents, and work with engineering teams to verify the existence of security issues
  • Experience working with Developers, DevOps, and Engineering teams in a dynamic environment to evolve the DevSecOps program and integrate security tools into the build-pipelines.
  • Experience with Continuous Integration/Continuous Deployment (CI/CD) processes and concepts using relevant technologies and tools (e.g., Jenkins, Ansible, Terraform)
  • Experience with DevOps container/orchestration tools (Kubernetes, Docker, Puppet, etc)

 

How you will contribute:
  • Reproduce reported security issues and test fixes produced by engineering teams
  • Research and evaluate IoT vulnerabilities, attack vectors, and associated risks to Acuity Brands systems, applications, and technology
  • Provide technical subject matter expertise to engineering organizations on common security vulnerabilities as well as how to prevent and test for them
  • Assist in technical communications with security researchers and research organizations as part of incident response activities
  • Perform technical reviews of security requirements, security bulletins, and other documents related to security risks and remediation actions
  • Raise awareness of product security requirements/policies and track compliance across the company
  • Develop scripts and web applications to gather information from various security tools and bring security data into a common reporting platform for analysis
  • Keep up with the latest threats and research security related trends/best practices by participating in security technology conferences and events
  • Assist senior security engineers with application security reviews, threat modeling and penetration testing
  • Interpret the results of penetration testing and vulnerability scanning tools such as IBM AppScan, AppSpider, Nessus, Nexpose, Qualys, and others
     
About You:

 

  • You have a hacker mentality and like to take things apart to see how they work.
  • You are proactive, passionate and optimistic.
  • You are innovative – you challenge assumptions.
  • You encourage those around you to create their best work.
  • You work for the best interest of the group at all times.
  • You have unwavering personal integrity and a strong work ethic.
  • You graciously give and receive feedback.
Qualified Applicants will have:
  • 3-5 years' of experience in the product security domain with working knowledge of Software Development
  • Experience with Cloud Service Providers (Azure, Amazon Web Service (AWS), or Google Cloud Platform (GCP))
  • Experience reading reports from vulnerability and application scanning tools (e.g., Qualys, Nessus, Rapid 7, Burp Suite, and others)
  • A great combination of risk-awareness, impatience, optimism, empathy and vision, as well as a burning desire to make a difference
  • Strong oral and written communication skills with demonstrated attention to detail to lead meetings, work with senior engineering leaders and document security risks
  • Ability to establish plans and deliver high quality results on time
  • Ability to learn and understand new products and technology quickly
  • Ability to analyze complex issues in order to perform root cause analysis

Nice experience to have:

  • Experience with high level programming languages (e.g., Java, C, C++, C#, VB, .NET, ASP.NET, ASP, PHP, J2EE, JSP, and others)
  • Bachelor's Degree in Computer Science (CS), Cyber Security, or a Related Field (Master’s Degree preferred)
Whats in it for you:
  • Working as part of a world-class IoT security team who produce quality technology solutions
  • The chance to work on meaningful projects aspiring that will improve people's lives
  • Great tech gear including 4k monitors, MacBooks, or Surface Books / Surface Pros
  • Flexible remote work
  • Creative and collaborative environment
  • Health, Dental, Vision, Life, AD&D, 401K, HSA Accounts, Stock Purchase Plans and more....
  • Our team is a strategic part of the direction of our company
  • Our company is a very profitable market leader and provides financial stability
  • We believe in a healthy work/life balance

 

We invite you to apply today to join us as We Light the Way to a Brilliant, Productive, and Connected World!

 

Please utilize the internal career site to apply if you are a current employee at Acuity Brands. 

 

We value diversity and are an equal opportunity employer.  All qualified applicants will be considered for employment without regards to race, color, age, gender, sexual orientation, gender identity and expression, ethnicity or national origin, disability, pregnancy, religion, covered veteran status, protected genetic information, or any other characteristic protected by law. 

Please click here and here for more information.

 

Accommodation for Applicants with Disabilities:  As an equal opportunity employer, Acuity Brands is committed to providing reasonable accommodations in its application process for qualified individuals with disabilities and disabled veterans. If you have difficulty using our online system due to a disability and need an accommodation, you may contact us at (770) 922-9000.  Please clearly indicate what type of accommodation you are requesting and for what requisition. 

 

Any unsolicited resumes sent to Acuity Brands from a third party, such as an Agency recruiter, including unsolicited resumes sent to an Acuity Brands mailing address, fax machine or email address, directly to Acuity Brands employees, or to Acuity Brands resume database will be considered Acuity Brands property. Acuity Brands will NOT pay a fee for any placement resulting from the receipt of an unsolicited resume.

 

Acuity Brands will consider any candidate for whom an Agency has submitted an unsolicited resume to have been referred by the Agency free of any charges or fees. This includes any Agency that is an approved/engaged vendor, but does not have the appropriate approvals to be engaged on a search.

Req ID:  2060


Nearest Major Market: Atlanta

Job Segment: Operations Manager, Engineer, Developer, Operations, Security, Engineering, Technology

Apply now »