Senior, Security Engineer - Security Automation

Be part of an amazing story.

Macy's is more than just a store. We're a story. One that's captured the hearts and minds of America for more than 160 years. A story about innovations and traditions...about inspiring stores and irresistible products...about the excitement of the Macy's 4th of July Fireworks, and the wonder of the Thanksgiving Day Parade. We've been part of memorable moments and milestones for countless customers and colleagues. Those stories are part of what makes this such a special place to work.

Job Overview

The Senior, Security Engineer reviews and develops security solutions using strong software development skills and actively engages with management to provide timely updates and clear status. This role informs decision-making related to security risk exposure and operational stability through effective communication and technical insight.

What You Will Do

• Translate business requirements into well-engineered, tested, and deployed application systems; provide ongoing production support.
• Partner with internal customers to identify efficient, cost-effective solutions and lead the design, development, testing, installation, and deployment of software applications.
• Develop solutions using a range of software technologies, including new code development, enhancements to existing modules, configuration, and package implementation.
• Contribute to the development of new systems and applications for moderate to small projects with higher technical complexity, working from functional specifications.
• Perform coding and configuration in accordance with documented requirements, using standard procedures and best practices.
• Monitor the performance and operational efficiency of existing applications and provide or coordinate proactive maintenance.
• Review, analyze, and modify application systems, including coding, testing, debugging, and deployment for large-scale environments.
• Maintain accurate documentation of program development, changes, and revisions.
• Provide technical support and lead effective problem resolution for customer inquiries and production issues.
• Collaborate with technical leads across network, server, application, field services, project management, data center operations, and subject matter experts to integrate security controls into a cohesive, risk-mitigating architecture.
• Apply strong critical-thinking skills to assess issues, evaluate options, and drive sound technical decisions.
• Mentor and coach Security Analysts, providing guidance and expertise to support their professional growth.
• Work closely with managed service providers and delivery, vulnerability, and incident response teams.
• Participate in on-call and change management rotations.
• Demonstrate consistent, dependable attendance and punctuality.
• Foster an environment of acceptance and respect that strengthens relationships, and ensures authentic connections with colleagues, customers, and communities.
• In addition to the essential duties mentioned above, other duties may be assigned.

Skills You Will Need

Security Engineering & Software Development: Strong ability to design, develop, test, and deploy secure application systems, including new code development, enhancements, configuration, and package implementations.

Application & Infrastructure Security: Deep understanding of securing applications and infrastructure, including authentication, session management, encryption, web servers, and server-grade technologies such as DNS, SMTP, IIS, Apache, LDAP, and SQL.

Vulnerability Management & Risk Mitigation: Proven experience identifying, analyzing, and correlating technical vulnerabilities, implementing effective countermeasures, and remediating findings through patching or mitigation strategies.

Risk Assessment & Architecture: Ability to assess security risks across computer systems and applications, apply best practices, and contribute to secure, scalable architecture decisions.

Infrastructure as Code & CI/CD: Experience developing Infrastructure as Code and maintaining CI/CD pipelines to support secure, automated delivery.

Network & Protocol Knowledge: Strong knowledge of TCP/IP, HTTP/HTTPS, cookies, SSL/encryption, and web application communication and security models.

Cloud Security (Preferred): Understanding of IaaS cloud security principles and controls.

Operational Stability & Production Support: Ability to monitor application performance, support production environments, and lead effective resolution of incidents and operational issues.

Critical Thinking & Problem Solving: Strong analytical skills to evaluate complex issues, balance risk, and drive sound technical decisions in high-impact environments.

Cross-Functional Collaboration: Proven ability to work effectively with network, server, application, data center, vulnerability, incident response, and managed service teams to integrate security controls across platforms.

Technical Documentation & Communication: Excellent written and verbal communication skills, including the ability to produce clear documentation, reports, procedures, and problem descriptions that enable effective troubleshooting and knowledge sharing.

Leadership & Mentorship: Demonstrated capability to mentor and coach Security Analysts, providing technical guidance and supporting team development.

Project & Priority Management: Proven ability to manage multiple projects, balance competing priorities, and deliver results in a fast-paced environment.

Executive & Stakeholder Communication: Ability to communicate clearly and concisely with technical and non-technical stakeholders, keeping leaders informed of risks, status, and recommendations.

Strategic & Creative Thinking: Ability to think creatively, strategically, and technically to anticipate risks and develop innovative security solutions.

Who You Are

• Candidates with a bachelor's degree or equivalent work experience in a related field are encouraged to apply. 5-7 years of experience in Information Security or Information Technology.
• Regularly required to sit, talk, hear; use hands/fingers to touch, handle, and feel. Occasionally required to move about the workplace and reach with hands and arms. Requires close vision.
• Able to work a flexible schedule based on department and company needs.

What We Can Offer You

Join a team where work is as rewarding as it is fun! We offer a dynamic, inclusive environment with competitive pay and benefits. Enjoy comprehensive health and wellness coverage and a 401(k) match to invest in your future. Prioritize your well-being with paid time off and eight paid holidays. Grow your career with continuous learning and leadership development. Plus, build community by joining one of our Colleague Resource Groups and make a difference through our volunteer opportunities.

Some additional benefits we offer include:

• Merchandise discounts
• Performance-based incentives
• Annual merit review
• Employee Assistance Program with mental health counseling and legal/financial advice
• Tuition reimbursement

Access the full menu of benefits offerings here.

About Us

This is a great time to join Macy's! Whether you're helping a customer find the perfect gift, streamlining operations in one of our distribution centers, enhancing our online shopping experience, buying in-style and on-trend merchandise to outfit our customers, or designing a balloon for the Thanksgiving Day Parade, we offer unique opportunities to be part of some of the most memorable moments in people's lives.

Join us and help write the next chapter in our story - apply today!

This job description is not all-inclusive. Macy's, Inc. reserves the right to amend this job description at any time. Macy's, Inc. is an Equal Opportunity Employer, committed to a diverse and inclusive work environment.

LEGALRE00

TECH00