Nike Expert Security Application Engineer in Beaverton, Oregon

Become a Part of the NIKE, Inc. Team

NIKE, Inc. does more than outfit the world's best athletes. It is a place to explore potential, obliterate boundaries and push out the edges of what can be. The company looks for people who can grow, think, dream and create. Its culture thrives by embracing diversity and rewarding imagination. The brand seeks achievers, leaders and visionaries. At Nike, it’s about each person bringing skills and passion to a challenging and constantly evolving game.

Nike Technology designs, creates and implements the methods and tools needed to make the world’s largest sports brand run faster, smarter and more securely. Global Technology teams aggressively innovate the solutions needed to help employees navigate Nike's rapidly evolving landscape. From infrastructure to security and supply chain operations, Technology specialists drive growth through top-flight hardware, software and enterprise applications. Simply put, without Nike Technology, there are no Nike products.

Description

Nike Tech brings together technology and process expertise to create value for the consumer. We deliver one-stop, integrated process and technology capabilities that enable Nike, Inc.'s businesses and brands worldwide. Our focus is on providing premium experiences with speed and agility, experiences that enhance the Nike Brand.

As the Expert Security Application Engineer, you be responsible for driving security requirements for web and mobile applications with a focus on Cloud, APIs, and integration with Retailer’s systems for Go-to-Market Solutions. You will perform security vulnerability assessments (manual & automated) of web applications and systems. You will work with technical and business teams to explain the vulnerabilities and provide recommendation for mitigation. You will also drive to improve application security practices, conduct application security training for development teams and focus on improving overall application quality.

What We’re Looking For:

To make it clear, we're not looking for just anyone. We're looking for someone special, someone who had these experiences and clearly demonstrated these skills:

• 8 years’ experience in Application Security and administering web-based applications and servers.

• 8 years’ experience with Cloud Computing platforms (Amazon AWS, Microsoft Azure, OpenStack, etc.)

• 8 years’ experience developing applications using Java, JavaScript, HTML, and Python

• 8 years’ experience with security of consumer facing websites

• Solid understanding of the Software as a Service (SaaS) model

• Strong understanding of Cloud-based authentication and key management

• Familiarity with Web Application Testing tools

• Experience looking for security vulnerabilities such as Cross Site Scripting, SQL Injection, Cookie Manipulation, Buffer Overflows, etc.

• Familiarity with Open Source Security Testing Methodology Manual (OSSTMM), Open Web Application Security Project (OWASP) and National Institute of Standards and Technology (NIST) Special Publications

• Knowledge of Applied Cryptographic Protocols

• Working knowledge of TCP/IP ports and protocols

• In-depth familiarity with Windows and Unix Operating Systems

• Working knowledge of firewalls and other Network Security products

Qualifications

Preferred Qualifications:

• BA/BS degree preferred in computer science, engineering, math, statistics, or information systems

• CISSP, CEH, OSCP, OSCE, GPEN, CPT

• Strong knowledge of software development lifecycles

• Strong knowledge of project management frameworks

• Strong communication skills with the ability to manage time effectively

• Ability to develop and communicate recommendations to management

• Ability to translate technical security vulnerabilities into business risk

• Strong problem-solving and conceptual thinking abilities

• Strong ability to analyze information and data

Qualifications Preferred Qualifications:

• BA/BS degree preferred in computer science, engineering, math, statistics, or information systems

• CISSP, CEH, OSCP, OSCE, GPEN, CPT

• Strong knowledge of software development lifecycles

• Strong knowledge of project management frameworks

• Strong communication skills with the ability to manage time effectively

• Ability to develop and communicate recommendations to management

• Ability to translate technical security vulnerabilities into business risk

• Strong problem-solving and conceptual thinking abilities

• Strong ability to analyze information and data

NIKE, Inc. is a growth company that looks for team members to grow with it. Nike offers a generous total rewards package, casual work environment, a diverse and inclusive culture, and an electric atmosphere for professional development. No matter the location, or the role, every Nike employee shares one galvanizing mission: To bring inspiration and innovation to every athlete* in the world.

NIKE, Inc. is committed to employing a diverse workforce. Qualified applicants will receive consideration without regard to race, color, religion, sex, national origin, age, sexual orientation, gender identity, gender expression, veteran status, or disability.

Job ID: 00383698

Location: United States-Oregon-Beaverton

Job Category: Technology