Senior Security Engineer
Senior Security Engineer
Posted on :
02-09-2025
Employer Active
1 Vacancy
Job Alert
You will be updated with latest job alerts via emailValid email field required
Send jobs
Share
Send me jobs like this
Job Alert
You will be updated with latest job alerts via emailValid email field required
Send jobs
Monthly Salary
Not Disclosed
Salary Not Disclosed
Vacancy
1 Vacancy
Posted on :
02-09-2025
Job Description
Best Buy places the highest importance on the confidentiality availability and integrity of customer company and employee information. As a member of Best Buys Enterprise Risk and Compliance (ERC) team you will play a critical role to ensure that customer company and employee information is secure while enabling technology and business partners throughout Best Buy to innovate and provide superior customer care in our stores online and through our various contact channels.
This role is hybrid which means you will work some days at our corporate office in Richfield Minnesota and some days virtually from home or another non-Best Buy location. You must be located within a commutable distance of our Richfield Minnesota headquarters. The specific work arrangements may vary by role and team. The recruiter or hiring manager will provide more details during the hiring process.
Key Responsibilities
Perform application security and penetration testing on Best Buy Applications and Systems.
Assess and report security weaknesses and their risk according to Best Buys application penetration testing methodology.
Document identified security weaknesses in Best Buy systems and provide detailed reports to appropriate development and business teams.
Develop and share a point of view on risk-based cost-effective remediation options for identified security weaknesses.
Work directly with Best Buy development teams to provide remediation guidance for identified security weaknesses and perform fix validations when requested.
Configure and operate security assessment tools such as BURP Pro and HCL AppScan.
Perform personal research to stay current on security trends new vulnerabilities and technology.
Provide technical mentorship to other team members analysts and peers.
Brief ERC Application Security leadership on assessment results activities performed and evaluation of potential risks.
Identify testing methodology or process improvements and make recommendations to ERC Application Security leadership.
Basic Qualifications
4 or more years of experience performing application security assessments and/or penetration tests in a corporate environment.
Experience with intercepting proxies dynamic analysis tools (DAST) and static analysis tools (SAST).
Understanding of application security vulnerabilities testing techniques and the OWASP framework.
Familiarity with popular web application languages and platforms such as JavaScript HTML Java or similar.
Knowledge of secure development of web applications (SDLC) mobile applications or thick client applications.
General curiosity to learn ask questions and help others.
Preferred Qualifications
Industry relevant certifications (CISSP OSCP CISA GPEN) and/or training.
Understanding of enterprise network architecture and protocols.
Previous or current software development experience.
Experience in Red & Purple Team engagements.
Whats in it for you
Were committed to helping our people thrive at work and at home. We offer generous benefits that address your total well-being and provide support as you need it especially at key moments in your life.
Our benefits include:
As part of the Best Buy team youll help us fulfill our purpose to enrich lives through technology. We bring that to life every day by humanizing and personalizing tech solutions for every stage of life in our stores online and in customers homes.
Our culture is built on deeply supporting and valuing our amazing employees who make it all possible. Were committed to being a great place to work where you can unlock unique career possibilities. Above all we aim to provide a place where you can bring your full authentic self to work now and into the future. Tomorrow works here.
Best Buy is an equal opportunity employer.
This role is hybrid which means you will work some days at our corporate office in Richfield Minnesota and some days virtually from home or another non-Best Buy location. You must be located within a commutable distance of our Richfield Minnesota headquarters. The specific work arrangements may vary by role and team. The recruiter or hiring manager will provide more details during the hiring process.
Key Responsibilities
Perform application security and penetration testing on Best Buy Applications and Systems.
Assess and report security weaknesses and their risk according to Best Buys application penetration testing methodology.
Document identified security weaknesses in Best Buy systems and provide detailed reports to appropriate development and business teams.
Develop and share a point of view on risk-based cost-effective remediation options for identified security weaknesses.
Work directly with Best Buy development teams to provide remediation guidance for identified security weaknesses and perform fix validations when requested.
Configure and operate security assessment tools such as BURP Pro and HCL AppScan.
Perform personal research to stay current on security trends new vulnerabilities and technology.
Provide technical mentorship to other team members analysts and peers.
Brief ERC Application Security leadership on assessment results activities performed and evaluation of potential risks.
Identify testing methodology or process improvements and make recommendations to ERC Application Security leadership.
Basic Qualifications
4 or more years of experience performing application security assessments and/or penetration tests in a corporate environment.
Experience with intercepting proxies dynamic analysis tools (DAST) and static analysis tools (SAST).
Understanding of application security vulnerabilities testing techniques and the OWASP framework.
Familiarity with popular web application languages and platforms such as JavaScript HTML Java or similar.
Knowledge of secure development of web applications (SDLC) mobile applications or thick client applications.
General curiosity to learn ask questions and help others.
Preferred Qualifications
Industry relevant certifications (CISSP OSCP CISA GPEN) and/or training.
Understanding of enterprise network architecture and protocols.
Previous or current software development experience.
Experience in Red & Purple Team engagements.
Whats in it for you
Were committed to helping our people thrive at work and at home. We offer generous benefits that address your total well-being and provide support as you need it especially at key moments in your life.
Our benefits include:
- Competitive pay
- Generous employee discount
- Financial savings and retirement resources
- Support for your physical and mental well-being
As part of the Best Buy team youll help us fulfill our purpose to enrich lives through technology. We bring that to life every day by humanizing and personalizing tech solutions for every stage of life in our stores online and in customers homes.
Our culture is built on deeply supporting and valuing our amazing employees who make it all possible. Were committed to being a great place to work where you can unlock unique career possibilities. Above all we aim to provide a place where you can bring your full authentic self to work now and into the future. Tomorrow works here.
Best Buy is an equal opportunity employer.
Required Experience:
Manager
Employment Type
Full Time
Key Skills
Report This Job
Disclaimer: Drjobpro.com is only a platform that connects job seekers and employers. Applicants are advised to conduct their own independent research into the credentials of the prospective employer.We always make certain that our clients do not endorse any request for money payments, thus we advise against sharing any personal or bank-related information with any third party. If you suspect fraud or malpractice, please contact us via contact us page.
