Apply on Employer Site

E.L.F. BEAUTY · 2 months ago

Senior IT Security Engineer

Oakland, CA

Full-time

Hybrid

Mid, Senior Level

$80K/yr - $110K/yr

7+ years exp

e.l.f. Beauty, Inc. is a leading beauty company committed to clean, cruelty-free products. They are seeking a highly skilled Senior Information Security Engineer to lead enterprise-wide cybersecurity initiatives and strengthen security posture across on-premises and cloud environments.

BeautyConsumer GoodsCosmeticsE-Commerce

Growth Opportunities

Responsibilities

Design, build, deploy, and maintain enterprise security technologies and solutions aligned with business objectives, compliance requirements, and the cybersecurity program

Develop, document, and enforce security policies, standards, and procedures based on frameworks such as NIST, CIS, ISO 27001, and SOX while advancing overall security maturity, governance, and processes

Lead strategic security initiatives, including Zero Trust architecture, Data Loss Prevention (DLP), Cloud Security, Network Segmentation, IAM, Endpoint Security modernization, and security automation

Manage and improve email security, DNS security, and other protective controls to defend against phishing, malware, data exfiltration, and domain-based threats

Lead vulnerability management programs and drive remediation efforts, providing visibility into risks and progress to stakeholders

Oversee incident response lifecycle—detection, analysis, containment, remediation, post-incident review—and continuously enhance disaster recovery and business continuity plans

Monitor and analyze security events and network activity (e.g., traffic analysis, host behavior, forensics, kill chain, Windows event analysis), tuning tools, and event correlation for accurate threat detection

Collaborate with IT, DevOps, and digital teams to embed security into system design, application development, deployment pipelines, and cloud infrastructure

Evaluate and review vendor and partner security practices to ensure alignment with organizational standards

Produce regular security dashboards and metrics to report on incidents, threats, and operational effectiveness

Lead security awareness training, mentor junior engineers, and guide cross-functional teams on secure design principles and best practices

Stay current on emerging threats, vulnerabilities, and technologies to enhance enterprise resilience

Qualification

Cloud SecurityZero TrustIAM/SSO/MFASecurity AutomationVulnerability ManagementIncident ResponseSecurity FrameworksEmail SecurityScriptingLeadershipCommunicationMentoringTeam Collaboration

Required

Bachelor's degree in Computer Science, Cybersecurity, or related field

7+ years of experience in information security engineering, architecture, or operations

Expertise in cloud security (AWS, Azure, GCP), data protection, IAM/SSO/MFA, email and DNS security, and secure network architecture

Hands-on experience with key security technologies: firewalls, VPN, NAC, EDR/MDR, IPS/IDS, SIEM, DLP, vulnerability management, and email security platforms (Proofpoint, Mimecast, Microsoft 365 Defender)

Strong understanding of Zero Trust, endpoint protection, DevSecOps, security automation, and scripting (Python, PowerShell, Bash)

Proven ability to lead incident response, risk assessments, threat detection, and remediation efforts

Experience implementing DNS protection solutions (Cisco Umbrella, Cloudflare, Infoblox, Valimail)

Knowledge of security frameworks and compliance standards: NIST CSF, CIS Controls, ISO 27001, SOX

Demonstrated success in leading security awareness programs, mentoring team members, and advancing security program maturity

Strong communication, leadership, and ability to manage multiple security initiatives

Preferred

Master's degree in Computer Science, Cybersecurity, or related field

Relevant certifications preferred: CISSP, CISM, CISA, GIAC, Microsoft Security certifications, AWS Security Specialty, Azure Security Engineer Associate