Engineering program manager h1.location_city

About Grocery Outlet:

• Our Mission: Touching lives for the better
• Our Vision: Touching lives by being the first choice for bargain-minded consumers in the
• Our Values & Behaviors: Achievement, Diversity, Entrepreneurship, Family, Fun, Integrity & Service

About the Team:

Our IT team’s mission is to push the boundaries of technology with the intention of going above and beyond to aid stores and customers and deliver timely solutions to benefit all members of Grocery Outlet. Our team consists of problem solvers and go-getters who are dedicated to being service-oriented and solving important problems.

About the Role:

We are seeking a Security Engineering Manager to design, implement, and maintain robust security systems that protect Grocery Outlet’s digital infrastructure and data. This is a highly technical hands-on individual contributor role. You will be responsible for identifying vulnerabilities, developing security protocols, configuring security tools, responding to security incidents while ensuring compliance with SOX and CPPA/CPRA. This role reports to the Director – Information Security.

Responsibilities:

• Provide technical leadership and oversight to overall security activities and initiatives.
• Install and maintain security products.
• Data Security Posture Management, Vulnerability Management, Cloud Security, Identity and Access Management, Web Application Firewall, Static Application Security Testing, etc.
• Harden systems for cyber resilience, create and maintain systems configuration baselines.
• Conduct gap analyses, security lifecycle and business impact assessments, design requirements assessments, along with new technology impact assessments.
• Review and respond to security findings and alerts generated by the Managed Security Services Provider (MSSP), covering system events, log files, and alerts across operating systems, networking equipment, DLP, EDR, and cloud environments.
• Ensure proper configuration and tuning of CrowdStrike and Cloudflare to align with the environment and can create and manage custom dashboards for ongoing visibility and reporting.
• Analyze network security alerts and events: analyze logfiles, packet captures, network flows and flowrates.
• Provide intelligence support during incident response and forensic security investigations.
• Lead pentest and security assessment remediation efforts in conjunction with Technology Operations team.
• Process and enrich information to ensure timely, actionable, high confidence IOCs are ingested and shareable.
• Conduct technical analysis based upon industry accepted threat intelligence analytical frameworks, tools, and standards.
• Assisting with SOX compliance efforts, including audit support and access provisioning.
• Participate in change management process as technical stakeholder.
• With guidance of the compliance team, assist with audit walkthroughs.

Environments, Tools, and Programing Languages

• Cloud Environments: Google Cloud Platform (GCP), Microsoft Azure, AWS
• Programming Languages: Python, PowerShell, Java
• Operating Systems: Windows, macOS, Linux
• Security Tools: Data Loss Prevention (DLP), EDR, WAF, CNAPP

About The Pay:

• Base Salary Range: $130,000 - $160,000 Annually
• Annual Bonus Program
• Equity
• 401(k) Profit Sharing
• Medical, Dental, Vision & More!
• Final compensation will be determined based upon experience and skills and may vary based on location.

About You:

• Bachelors degree in Cybersecurity, Computer Science, or related field from an accredited university. Master’s degree or equivalent experience preferred.
• 5 - 7 years in cybersecurity roles with hands-on experience in security architecture, security operations, incident response, and risk assessment.
• Ability to understand how different security components fit together into a cohesive defense in depth strategy, identify gaps in coverage, and design solutions that maximize detection and response capabilities across the environment.
• Ability to quickly assess alerts, separate signal from noise, conduct forensic investigation when needed, and make rapid decisions on containment and remediation.
• Proficiency with industry-standard security tools, cloud platforms (GCP/AWS/Azure).
• Expertise in Crowdstrike and Cloudflare, working knowledge of SAP HANA.
• Scripting languages: Python, PowerShell to automate repetitive tasks, build integrations, create custom tools, and enhance EDR capabilities.
• Knowledge of security frameworks like NIST CSFO, 800 Series, and CIS Critical Security Controls.
• CISSP, CISM and/or CISA certifications.
• Strong analytical and problem-solving abilities, excellent communication skills, and ability to work effectively under pressure during security incidents.
• Must be detail oriented with collaborative mindset and thrive on finding effective ways to balance security with user experience and customer needs.