Nike

Become a Part of the NIKE, Inc. Team

NIKE, Inc. does more than outfit the world’s best athletes. It is a place to explore potential, obliterate boundaries and push out the edges of what can be. The company looks for people who can grow, think, dream and create. Its culture thrives by embracing diversity and rewarding imagination. The brand seeks achievers, leaders and visionaries. At NIKE, Inc. it’s about each person bringing skills and passion to a challenging and constantly evolving game.

NIKE is a technology company. From our flagship website and five-star mobile apps to developing products, managing big data and providing leading edge engineering and systems support, our teams at NIKE Global Technology exist to revolutionize the future at the confluence of tech and sport. We invest and develop advances in technology and employ the most creative people in the world, and then give them the support to constantly innovate, iterate and serve consumers more directly and personally. Our teams are innovative, diverse, multidisciplinary and collaborative, taking technology into the future and bringing the world with it.

WHO ARE WE LOOKING FOR

We’re looking for an Senior Information Security Platform Engineer. This role on the team will be focused on the automation and integration of various security tools to drive accountability & visibility of Nike's high-risk findings. Work with multiple data sources, including all data and other enterprise data, for contextual enrichment to drive actional output and automated vulnerability management lifecycle. In addition, you will work with technical and business teams to understand customer use cases for remediation of vulnerabilities/Risks and provide solutions to create self-service visibility into security findings for mitigation and automated reporting. You will also improve Nike's security posture by advocating for security best practices and implementation. Ours is a fast-paced, forward-thinking team constantly innovating and passionate about data and risk reduction. 

WHAT WILL YOU WORK ON

• Developing automation & complex orchestration to scale out the vulnerability or risks, output of vulnerability data and correlated (enrichment) data across the organization.
• Assist in developing automated solutions with scripting language like Python, Ansible, Perl, Powershell etc. with maintaining pipeline integration of security tools into various development SDLCs.
• Educate Engineers, developers, and product teams on the importance of vulnerability management (Risks), effectively utilize the tools and remediate findings identified in an automated fashion.
• Continually evaluate the current state of the program; work with the team constantly find ways to automate and develop future roadmap.
• Communicate complex technical issues simply to different audiences.
• Ability to quickly learn new Information Security concepts and adapt to a fast-paced, ever-changing organization.
• Will be working on Azure, AWS, GCP and AliCloud cloud platforms to automate our security challenges.

WHO WILL YOU WORK WITH

This role is part of the CSD (Cyber security solutions delivery) team within Corporate Information Security (CIS) and reports to the local Director for CSD. You will work with teams within CIS.

WHAT YOU BRING

• You should have 5+ years of total experience.Bachelor’s or Master’s degree preferred in computer science, information assurance
• Expertise in interpreted languages (Python is a must) and high-level languages (Java script, .Net, PowerShell) with full-stack development experience
• Hands on experience with ETL tools (i.e. GIT hub, Apache Nifi, MS-SSIS, jasper) and concepts
• Software development background and strong knowledge of software development lifecycles
• Previous experience deploying and maintaining configuration as code systems, services, containers and applications in AWS, Azure and/or GCP
• Ability to develop and communicate recommendations to management
• Ability to translate technical security vulnerabilities into business risk through automation.
• Strong problem-solving and conceptual thinking abilities
• Strong ability to reverse engineer tools, exploits and open-source applications and ability to develop them
• Experience looking for application security vulnerabilities such as Cross Site Scripting, SQL Injection, Cookie Manipulation, Buffer Overflows, etc.
• Familiarity with Windows and Unix Operating Systems
• If someone has worked on cloud automation would be an added advantage.

NIKE, Inc. is a growth company that looks for team members to grow with it. Nike offers a generous total rewards package, casual work environment, a diverse and inclusive culture, and an electric atmosphere for professional development. No matter the location, or the role, every Nike employee shares one galvanizing mission: To bring inspiration and innovation to every athlete* in the world.

NIKE, Inc. is committed to employing a diverse workforce. Qualified applicants will receive consideration without regard to race, color, religion, sex, national origin, age, sexual orientation, gender identity, gender expression, veteran status, or disability.