Staff Security Engineer - Cyber Security

Be part of an amazing story

Macy's is more than just a store. We're a story. One that's captured the hearts and minds of America for more than 160 years. A story about innovations and traditions...about inspiring stores and irresistible products...about the excitement of the Macy's 4th of July Fireworks, and the wonder of the Thanksgiving Day Parade. We've been part of memorable moments and milestones for countless customers and colleagues. Those stories are part of what makes this such a special place to work.

Job Overview

Macy's is seeking a Staff Information Security Engineer to join its Cloud Security team. This position plays a pivotal role in designing, implementing, and operating secure solutions across the enterprise. As a recognized technical leader, the engineer will provide guidance on information security concepts, ensuring that Macy's systems and processes align with business objectives while maintaining a strong security posture.

The role involves leading security planning, assessment, testing, and implementation activities, as well as documenting standards, policies, and procedures. The engineer will mentor team members, coordinate resources, and define configuration and operational requirements for security projects. Collaboration with Infrastructure, divisional, and Domain management is central, as is providing technical leadership to Platform & Development teams.

The ideal candidate is curious, creative, and tenacious, with a passion for cloud security and continuous learning. They will drive improvements in visibility, manageability, and resilience of Macy's GCP and Azure platforms, while sharing knowledge and fostering growth across the team. This is an opportunity to make a meaningful impact on Macy's security landscape and contribute to the future of secure, innovative cloud solutions.

What You Will Do

• Partner with Development and Platform teams to assess needs, identify security gaps, and translate requirements into secure specifications.
• Define security architectures, standards, and compliance requirements; conduct vulnerability analyses and risk assessments; and implement preventive, detective, and reactive measures.
• Lead security initiatives and project teams by managing scope, objectives, deliverables, and stakeholder expectations, ensuring successful execution.
• Drive a "security as code" approach by building and maintaining Terraform Policy as Code modules, developing self service workflows, and embedding security earlier in the development lifecycle ("shift left").
• Continuously improve the security posture baseline by defining metrics, conducting assessments, and creating response plans.
• Mentor and coach Security Analysts, providing guidance and expertise to support their professional growth.
• Collaborate closely with managed service providers, vulnerability management, and incident response teams to strengthen operational resilience.
• Provide expert level support for complex security issues and ensure consistent, accurate documentation of standards, configurations, and procedures.
• Participate in on call and change rotations to support ongoing operations.
• Demonstrate regular, dependable attendance and punctuality to ensure consistent delivery.
• In addition to the essential duties mentioned above, other duties may be assigned.

Skills You Will Need

Security Architecture & Technical Expertise: Deep knowledge of enterprise security architectures, technologies, protocols, and configurations; ability to assess system vulnerabilities, design secure solutions, and guide implementation aligned with business needs.

Risk Assessment & Analytical Thinking: Proficient in evaluating risks, conducting vulnerability analyses, interpreting complex technical data, and generating clear, actionable risk statements to strengthen the company's security posture.

Project Leadership & Execution: Strong ability to lead complex security initiatives, define scope and deliverables, coordinate resources, manage timelines, drive stakeholder alignment, and ensure successful project completion.

Cross-Functional Communication & Influence: Excellent written and verbal communication skills, with the ability to articulate technical concepts to non-technical audiences, influence decision-making, and represent leadership in meetings, briefings, and executive updates.

Enterprise Technology Acumen: Comprehensive understanding of large-scale enterprise systems-including cloud, mobile, wireless, messaging, directory services, DNS, databases, collaboration tools, virtualization, and multiple operating systems - to ensure secure design and operations.

Strategic Decision-Making: Ability to evaluate vendors, tools, and methodologies; recommend technology investments; identify resource needs; and contribute meaningfully to security strategy, standards, and policies.

Mentorship & Team Development: Skilled at coaching and developing junior associates, providing guidance on technical standards, best practices, and problem-solving approaches.

Problem Solving & Advanced Support: Expert-level troubleshooting and analytical skills, including the ability to resolve high-complexity issues, synthesize data trends, and provide escalation support to primary technical teams.

Adaptability & Prioritization: Demonstrated ability to manage multiple projects, balance competing priorities, and adjust to evolving business and security needs while maintaining high-quality outcomes.

Ownership & Accountability: Strong initiative and ownership mindset, with a commitment to driving secure solutions, improving processes, and ensuring the effective delivery of security programs.

Who You Are

• Candidates with a Bachelor's degree or equivalent work experience in a related field are encouraged to apply. 7+ years of direct experience.
• Regularly required to sit, talk, hear; use hands/fingers to touch, handle, and feel. Occasionally required to move about the workplace and reach with hands and arms. Requires close vision.
• Able to work a flexible schedule based on department and company needs.

What We Can Offer You

Join a team where work is as rewarding as it is fun! We offer a dynamic, inclusive environment with competitive pay and benefits. Enjoy comprehensive health and wellness coverage and a 401(k) match to invest in your future. Prioritize your well-being with paid time off and eight paid holidays. Grow your career with continuous learning and leadership development. Plus, build community by joining one of our Colleague Resource Groups and make a difference through our volunteer opportunities.

Some additional benefits we offer include:

• Merchandise discounts
• Performance-based incentives
• Annual merit review
• Employee Assistance Program with mental health counseling and legal/financial advice
• Tuition reimbursement

Access the full menu of benefits offerings here.

About Us

This is a great time to join Macy's! Whether you're helping a customer find the perfect gift, streamlining operations in one of our distribution centers, enhancing our online shopping experience, buying in-style and on-trend merchandise to outfit our customers, or designing a balloon for the Thanksgiving Day Parade, we offer unique opportunities to be part of some of the most memorable moments in people's lives.

Join us and help write the next chapter in our story - apply today!

This job description is not all-inclusive. Macy's, Inc. reserves the right to amend this job description at any time. Macy's, Inc. is an Equal Opportunity Employer, committed to a diverse and inclusive work environment.

LEGALRE00

TECH00