S-724 | Engineer principal, platform security

S-724 | Engineer principal, platform security

25 Sep
|
Starbucks Coffee Canada inc.
|
Montréal

25 Sep

Starbucks Coffee Canada inc.

Montréal

This position contributes to Starbucks success by managing the planning and execution of activities of an Application Development Team with a strong focus on infrastructure and application security. As engineer principal in application development, you are responsible for managing a team of software developers through planning, delivery and operations of solutions. You are also responsible for the evolvement, delivery and support the technology strategy and roadmaps for new and existing applications and platforms. This role requires managerial experience, technical expertise, domain proficiency, platform depth, and leadership. Models and acts in accordance with Starbucks guiding principles.



Summary of Key Responsibilities



Responsibilities and essential job functions include but are not limited to the following:



Leadership – Setting goals for the work group, developing organizational capability, and modeling how we work together:



- Manages an engineering team with Application Security focus to comply with Starbucks Global Cyber Security requirements.

- Provide Security Architecture Design Pattern

- Provide Security Engineering Services for common platform components

- Provide consultative services for security issues within the application team.

- Interface with Starbucks Cloud and Global Cyber Security teams representing our application platforms.





- Manages the technical team through the solution design process. Leverages and develops talent on the team through all phases of project efforts, including requirements gathering, assessment and backlog refinement. Shapes and guides systems approach, manages project initiation, technical design and development efforts.

- Ensures platform has appropriate design patterns and coding standards in place. Directs team toward secure, durable, scalable, flexible, and accessible solutions that proactively mitigate against production support issues.

- Identifies and communicates key responsibilities and practices to ensure the immediate team of direct reports promotes a successful attitude, confidence in leadership, and teamwork to achieve business results.

- Accountable for delivery of development and operational efforts of the team by ensuring efforts are staffed, structured, budgeted and prioritized appropriately.



Platform Stewardship – Championing platform efforts to promote platform evolvement and stability to support business needs.



- Partners with cross functional teams, such as Infrastructure, Security, Architecture, QA and key Development teams, to strengthen and elevate the platform from a technology perspective. Successfully sees designs and solutions through enterprise processes and governance to ensure compliant, secure and supportable solutions.



Partner Development and Team Building – Providing partners with coaching, feedback, and developmental opportunities, and building effective teams:



- Provides partners with coaching, feedback and developmental opportunities and builds effective teams.

- Ensures partners adhere to legal and operational compliance requirements.



Production Support for application and platform components



- Defines and maintains processes, procedures, and expectations for team’s production support responsibilities.

- Ensures platform application and platform support documentation is in place.

- Leads team through high severity security related operational incidents.





Basic Qualifications



- 8-10 years of professional industry experience with software development and operations

- 5 years of managing systems or application development projects of all sizes and complexities, including large systems

- 3-5 years of leading or managing small technical teams

- Bachelor’s degree in Computer Science or related field





Preferred Qualifications

Technical Proficiency



- Ability to hire, manage and grow a team of technical experts that cohesively build and operate secure, durable, flexible, accessible solutions. Requires an understanding of relevant development languages, tools, frameworks, utilities and technical dependencies.

- Recognizes, values and champions high quality, reusable software with minimal defects on the team.

- Working experience with product development teams in a security engineering role is highly desirable.

- Ability to conduct web security assessments and handle vulnerability remediation of applications and web services

- Ability to build automation tools for security processes for various application pipeline.

- Working knowledge of application architecture, infrastructure and security concepts and technical implementation.

- Aptitude to pick up new technologies and trends, as they become relevant for the business and our platforms. Examples include Graph DB, Big Data, REST Services, and incorporating cloud components.

- Expert in understanding of implications from design and implementation architecture choices toward building secure, scalable, durable, flexible, accessible solutions.

- Strong knowledge of AWS or Azure and Cloud Computing concepts

- Strong knowledge in best practices for:

- Security Architecture and design.

- Data security and encryption

- Database security.

- Platform and infrastructure

- Application. PaaS services

- Monitoring, auditing, and operations





- In-depth working experience in a DevSecOps or DevOps culture; one or more DevOps, Orchestration/Configuration Management and Continuous Integration technology (e.g. Docker/Kubernetes, Jenkins, Ansible, Terraform, ELK stack, Splunk etc.)

- Linux (Ubuntu, CoreOS, RedHat) and/or Microsoft Windows Server and associated technologies (Active Directory, Exchange etc.)

- One or more Web and Application Server technologies (e.g. Apache HTTPD, Apache Tomcat, Nginx, Glassfish, JBoss, Puma, Passenger, IIS)

- Networking protocols such as HTTP, DNS and TCP/IP

- One or more version control platform (e.g. Git, Perforce, SVN, TFVC)

- One of more observability services (e.g. Datadog, New-Relic, Prometheus)

- Experience managing full application stacks from the OS up through custom applications

- Expert in analyzing and troubleshooting applications.





Domain Proficiency



- Broad and deep understanding of relevant platform and applications capabilities, including established API’s, system activity components, process flows, the underlying data model, implementation specifics of important business rules, batch jobs, user interface components, and application configuration.

- Familiarity and curiosity in the business context and trends, as well as the business customers’ opportunities. Awareness of the functional aspects of the solution.

- Secure product life cycle - Strategy, development and deployment

- Help define overall application security strategies and procedures

- Help define operational processes to ensure predictable software development outcomes; refine Information Security processes and procedures.

- Develop, recommend, evaluate, integrate, deploy, and maintain security tools including security framework.

- Evaluate software security products and technologies.

- Develop and deploy solutions in Agile methodology, with continuous delivery processes



Interpersonal Skills



- Ability to lead and influence cross functional teams that include architects, analysts, developers and QA analysts

- Ability to articulate ideas, using facts and data, for solutions to both technical and business communities

- Excellent verbal and written communication skills

- Ability to influence and negotiate strategy and roadmaps in planning exercises

- Strong analytical and problem-solving skills

- Ability to balance multiple priorities and meet deadlines

- Ability to make timely and effective decisions using a mixture of intuition, analysis, experience and judgment





Starbucks and its brands are an equal opportunity employer of all qualified individuals.



We are committed to creating a diverse and welcoming workplace that includes partners with diverse backgrounds and experiences. We believe that enables us to better meet our mission and values while serving customers throughout our global communities. People of color, women, LGBTQIA+, veterans and persons with disabilities are encouraged to apply.



Qualified applicants with criminal histories will be considered for employment in a manner consistent with all federal state and local ordinances. Starbucks Corporation is committed to offering reasonable accommodations to job applicants with disabilities. If you need assistance or an accommodation due to a disability, please contact us at (phone hidden) or via email at [email protected]

The original job offer can be found in Kit Job:
https://www.kitjob.ca/job/20692417/s-724-engineer-principal-platform-security-montreal/?utm_source=html

Reply to this offer

Impress this employer describing Your skills and abilities, fill out the form below and leave Your personal touch in the presentation letter.

Subscribe to this job alert:
Enter Your E-mail address to receive the latest job offers for: s-724 | engineer principal, platform security
Publish a new Free Offer
Need to publish an offer? With more than 1 million unique users per month, you will find the ideal candidate for your company instantly, what are you waiting for!
Publish Now

Subscribe to this job alert