Security Risk Engineer, Global Cybersecurity

Full Time
Toronto, ON, Canada
11 months ago

Wayfair is the online leader for home furnishings and decor. Through technology and innovation, Wayfair makes it possible for shoppers to quickly and easily find exactly what they want from a selection of more than 8 million items across home furnishings, décor, home improvement, housewares and more. Wayfair is a fast-paced environment and has been experiencing phenomenal growth.

Cyber security at Wayfair is responsible for protecting Wayfair’s production systems wherever they may live.  We constantly seek innovative and automated ways to implement security and manage risk throughout the Wayfair environment.  We are looking to bring on a Cyber Security Risk Engineer who can help us maintain and grow our cyber security risk management practice as Wayfair matures and evolves.  

As a member of our Cybersecurity Risk team you will be focused on the engineering aspects of NIST, SOX IT General Controls, PCI DSS, and Security Risk at Wayfair. An ideal candidate is able to explain requirements associated with various cybersecurity frameworks and apply those requirements to a modern continuous-deployment software delivery organization. Core duties will include leading and implementing complex, cross-functional solutions, identifying and evaluating risk, communicating identified risks to leadership, designing and implementing controls to mitigate risk. You can expect to work closely with various Technology, Engineering, Cyber Security teams to identify, assess, and remediate cybersecurity risk in a fast paced, agile technology environment. The risk team also manages the Cybersecurity Risk Assessment program and drives program management for continuous improvement for our existing control program. This person should be passionate about managing information security risk, highly analytical and technical, and not afraid to implement solutions through automation and code!

What You'll Do:

  • Identify, assess, and provide mitigation strategies for technology and cybersecurity risk from an engineering perspective
  • Develop, deliver, and ensure alignment with various cyber security programs and frameworks
  • Participate in various IT audits and projects with a cyber security impact
  • Act as a trusted liaison between Wayfair engineering and various internal and external auditors throughout the year
  • Drive risk assessments on business and technical processes and systems
  • Document and maintain existing information security policies and IT control narratives
  • Help execute control testing, identify gaps, and recommend remediation as needed
  • Document process maps and information flow charts
  • Help maintain and improve the various risk assessment workflow automation
  • Support and drive strategic plans for mitigating risk based on risk assessment output, and both technical and business input
  • Provide support to the security awareness programs

What You Have:

  • Bachelor's degree in IT, CS, Engineering, or a related field
  • An understanding of basic security concepts and practices
  • An understanding of basic risk management practices and common frameworks
  • Some experience with OpenFAIR and/or Monte Carlo simulations for risk quantification would be a plus
  • Capable of understanding detailed technology infrastructure concepts
  • Familiarity with general network security principles and best practices
  • Familiarity with both Windows and Linux system administration principles
  • Some experience with cloud platforms such as AWS, Azure, or GCP 
  • Some experience with containers and orchestration technology such as Docker and Kubernetes is also a HUGE plus.
  • Excellent interpersonal and communication skills
  • Ability to work independently and within a team environment.
  • A strong willingness to learn and tackle new challenges
  • Strong desire to solve complex problems and implement innovative solutions
  • Ability to think critically and communicate with various levels within the organization

Why You'll Love Wayfair:

  • Time Off:
    • Paid Holidays
    • Paid Time Off (PTO)
  • Health & Wellness:
    • Full Health Benefits (Medical, Dental, Vision, HSA/FSA)
    • Life Insurance
    • Disability Protection (Short Term & Long Term Disability) 
    • Global Wellbeing: Gym/Fitness discounts (including US Peloton, Global ClassPass, and various regional gym memberships)
    • Mental Health Support (Global Mental Health, Global Wayhealthy Recordings)
    • Caregiver Services
  • Financial Growth & Security:
    • RRSP (Registered Retirement Savings Plan)
    • Tuition Reimbursement 
    • Financial Health Education (Knowledge of Financial Education - KOFE)
    • Tax Advantaged Accounts
  • Family Support:
    • Family Planning Support
    • Parental Leave
    • Global Surrogacy & Adoption Policy
  • Professional Development & Recognition:
    • Rewards & Recognition 
    • Global Employee Anniversary Awards 
    • Paid Volunteer Work 
  • Unique Perks:
    • Employee Discount 
    • U.S. Bluebikes Membership
    • Global Pod Outings
  • Work/Life Balance:
    • Emphasizing a supportive & flexible work environment that encourages a balance between personal and professional commitments 

We are looking forward to your application!

 

Assistance for Individuals with Disabilities

Wayfair is fully committed to providing equal opportunities for all individuals, including individuals with disabilities. As part of this commitment, Wayfair will make reasonable accommodations to the known physical or mental limitations of qualified individuals with disabilities, unless doing so would impose an undue hardship on business operations. If you require a reasonable accommodation to participate in the job application or interview process, please let us know by completing our Accomodations for Applicants form.

Need Assistance?

For more information about applying for a career at Wayfair, visit our FAQ page here. 

About Wayfair Inc.Wayfair is one of the world’s largest online destinations for the home. Whether you work in our global headquarters in Boston or Berlin, or in our warehouses or offices throughout the world, we’re reinventing the way people shop for their homes. Through our commitment to industry-leading technology and creative problem-solving, we are confident that Wayfair will be home to the most rewarding work of your career. If you’re looking for rapid growth, constant learning, and dynamic challenges, then you’ll find that amazing career opportunities are knocking.

No matter who you are, Wayfair is a place you can call home. We’re a community of innovators, risk-takers, and trailblazers who celebrate our differences, and know that our unique perspectives make us stronger, smarter, and well-positioned for success. We value and rely on the collective voices of our employees, customers, community, and suppliers to help guide us as we build a better Wayfair – and world – for all. Every voice, every perspective matters. That’s why we’re proud to be an equal opportunity employer. We do not discriminate on the basis of race, color, ethnicity, ancestry, religion, sex, national origin, sexual orientation, age, citizenship status, marital status, disability, gender identity, gender expression, veteran status, genetic information, or any other legally protected characteristic.

We are interested in retaining your data for a period of 12 months to consider you for suitable positions within Wayfair. Your personal data is processed in accordance with our Candidate Privacy Notice (which can found here: https://www.wayfair.com/careers/privacy). If you have any questions regarding our processing of your personal data, please contact us at dataprotectionofficer@wayfair.com. If you would rather not have us retain your data please contact us anytime at dataprotectionofficer@wayfair.com.