Our Opportunity:
Chewy is seeking a Security Analyst II to join an established technology team in Plantation FL, Boston MA, Or Minneapolis MN. At Chewy, it is our mission to be the most trusted and convenient destination for pet parents (and partners) everywhere. We have evolved into an innovative Fortune 500 industry leader. The Information Security team’s core objective is to relentlessly protect the digital identities of Chewy’s pet parents, team members, and business partners; ensuring confidentiality, availability and integrity of all data entrusted to us. The expectations of the prospective candidate will be to manage the lifecycle for vulnerabilities while supporting the development and maintenance of vulnerability management services, including vulnerability scanning, vulnerability assessments, and tracking support for vulnerability remediation. We continue to grow and always Think Big about new innovative ideas, while consistently exploring opportunities to differentiate ourselves in the industry.
$ads={1}
What You’ll Do:- Support the development and maintenance of vulnerability management services, including vulnerability scanning, vulnerability assessments, and tracking support for vulnerability remediation.
- Log and track discovered vulnerabilities.
- Prioritize remediation tasks based on risk level, assign them to the relevant owner, and monitor progress until completion.
- Apply root cause analysis to identify and assess problems and key drivers of success.
- Draw potential conclusions from complex data sets using big data analysis.
- Create detailed documentation and provide input on policy design for overall vulnerability program management.
- Participate in stakeholder meetings and discuss technical details of vulnerabilities.
What You’ll Need:
- Bachelor's degree or higher in Computer Science, Computer Information Systems, or similar; or equivalent experience.
- 3+ years' experience in cyber security or business analytics.
- Basic to intermediate understanding of vulnerability management process and lifecycle.
- Experience with data visualization and reporting.
- Familiarity with vulnerability management tools such as Rapid7 Nexpose, Tanium, Qualys etc.
- Analytical and problem-solving abilities / skills.
- Demonstrated ability to effectively communicate with stakeholders.
- Ability to balance multiple priorities at a given time.
- Must be team oriented and have a customer first mindset.
Bonus (if applicable):
- Familiarity with one or more scripting or programming languages such as Python, Golang, or Ruby.
- CISSP, GCIA, GCIH or equivalent certifications.
- Foundational knowledge of data analytics and visualization tools such as Splunk, Snowflake, Tableau.
- Familiarity with classes of vulnerabilities and their dependencies sourced from MITRE or OWASP
- Experience managing findings from public bug bounty programs.
- Experience working in e-commerce.
Chewy is committed to equal opportunity. We value and embrace diversity and inclusion of all Team Members. If you have a disability under the Americans with Disabilities Act or similar law, and you need an accommodation during the application process or to perform these job requirements, or if you need a religious accommodation, please contact CAAR@chewy.com.
If you have a question regarding your application, please contact HR@chewy.com.
To access Chewy's Customer Privacy Policy, please click here. To access Chewy's California CPRA Job Applicant Privacy Policy, please click here.
