The
Cybersecurity Engineer will be to safeguard the security of our
eCommerce platform and
mobile applications. The successful candidate will be responsible for ensuring that all web and mobile systems are designed, developed, and maintained with a robust security posture to protect customer data, transaction integrity, and overall system availability. The role requires hands-on experience in web and mobile application security, including secure coding practices, threat mitigation, and incident response.
Role- Designs, develops, and maintains the security of ecommerce web and mobile applications and their infrastructure
- Implement and configure security solutions, such as firewalls, encryption, authentication, authorization, logging, and monitoring, to protect web applications from cyberattacks and ensure compliance with security policies and regulations
- Perform security audits and reviews, and collaborate with other developers and stakeholders to ensure security integration and alignment
- Monitor, analyze, and respond to security incidents and threats affecting web applications and their infrastructure.
- Maintain and operate Web Application Firewall Configurations for ecommerce and mobile applications
- Work efforts outside business-hours, when necessary, as part of on-call rotation schedule
- Perform false positive analysis on WAF events
- Vulnerability Assessment and Management: Conduct regular vulnerability scans, identify and assess potential weaknesses in our systems and networks, and implement appropriate security controls to address them.
Skills & Qualifications:- 7+ years' experience in Cyber Security Engineering for Internet Facing Applications
- Strong understanding of web and mobile application security principles (OWASP Top Ten, CWE, and SANS Top 25).
- Hands-on experience with security testing tools such as Burp Suite, OWASP ZAP, Nessus, and mobile-specific testing tools (e.g., MobSF).
- Proficiency with encryption standards, SSL/TLS, PKI, and API security.
- Experience in securing mobile platforms (iOS, Android) and associated frameworks (React Native, Swift, Kotlin).
- Solid understanding of eCommerce technologies (e.g., payment gateways, session management, secure checkout) including CDN's (Cloudflare or equivalent)
- Experience in working with Azure cloud infrastructure and FrontDoor CDN
- Familiarity with DevSecOps practices, including integrating security in CI/CD pipelines.
- Strong incident response skills and experience with forensic tools to analyze web and mobile app compromises.
- Ability to manage complex security incidents, including root cause analysis and post-incident reporting.
- Excellent verbal and written communication skills, with the ability to translate complex security issues into actionable recommendations.
- Strong collaboration skills, working cross-functionally with development, operations, and business teams.
Education & Certifications:- Bachelor's Degree in Computer Science, Cybersecurity, Information Technology, or a related field.
- Certifications (Preferred but not mandatory):
- Certified Information Systems Security Professional (CISSP)
- Offensive Security Certified Professional (OSCP)
- Certified Ethical Hacker (CEH)
- GIAC Web Application Penetration Tester (GWAPT)
- GIAC Mobile Device Security Analyst (GMOB)
Compensation Details: $100900-$126100
Why should you join our team? We live our values - W.E.L.I.G.H.T (Winning, Excellence, Love, Integrity, Gratitude, Humility, and Teamwork). Gratitude. Humility. Love. You don't often see values like these in most corporate statements, but Ace is different. These things are important to us. They represent our commitment to the company, our employees, to Ace retailers and to the Ace brand.
In addition to providing our employees a great culture, Ace also offers competitive benefits that address life's necessities and perks, many of which expand and improve year after year, including:
- Incentive opportunities, based on role/grade level (rapid company growth over the past 5 years resulted in incentives being paid out at an average of 122% of your target opportunity!)
- Generous 401(k) retirement savings plan with a fully vested matching contribution the first year in addition to quarterly contributions and annual discretionary contribution (once eligibility requirements have been met). Over the past 5 years, company contributions (matching, quarterly & discretionary) for fully eligible employees have averaged 9.6% of total eligible compensation
- Comprehensive health coverage (medical, dental, vision and disability - up to 26 weeks short-term disability and long-term disability ) & life insurance benefits for you and your dependents
- 21 days of vacation immediately available (prorated in the first year) and up to 6 paid holidays depending on the month of hire
- Company Car, phone and fuel card are provided for field-based positions
- Your career at Ace is more than just a job. It's a chance to be part of something meaningful. We help locally-owned businesses thrive and make an impact in their communities - and we support our employees in doing the same by offering an annual Ace Cares Week, 20 hours off work per year to volunteer at an organization of your choice, opportunities to help Children's Miracle Network Hospitals and the Ace Helpful Fund through the Ace Foundation
- Ace invests in every employee we hire, with a key focus on development and coaching. We offer on-site classes, facilitator-led courses, and a generous tuition assistance program, plus a performance management approach that goes beyond the typical annual review
- We know the work environment matters. That's why Ace holds frequent campus events like Employee Appreciation Week, vendor demos, cookouts, and merchandise sales
- We bring them to you! Services such as mobile spas, auto maintenance, car wash and detailing, dry cleaning, dentists, eye doctors, flu shots, recycling and more!
- Employee discounts on Ace merchandise (including top brands like Weber, Traeger, Yeti, Craftsman, DeWalt and more), travel, fitness, computers and thousands more
- Birth/Adoption bonding paid time off
- Adoption cost reimbursement
- Employee Assistance Program (EAP) - access to free visits to therapists and lawyers, guidance on financial matters, elder and childcare, and assistance with tickets to entertainment events
- Identity theft protection
Benefits are provided in compliance with applicable plans and policies.
Want to be notified when new jobs are posted? Follow the link below to create an account and set up custom job alerts: Create Job Alert We want to hear from you!When most people think of career opportunities with Ace Hardware, they often think of the helpful cashiers and sales associates at their local store. However, have you also considered the people behind the scenes who select, promote, ship and process the invoices for more than 75,000 products? Maybe you haven't, but we'd like you to. Because together we help our customers take care of their homes. Come find out why a career with the Ace Hardware Corporation is one of America's best kept secrets.
Equal Opportunity EmployerAce Hardware Corporation is committed to a policy of promoting equal employment opportunities. The company recognizes the importance of diversity and leveraging the skills and talents of all people to the mutual advantage of each individual and the organization. The company is committed to the prevention of employment discrimination related to race, religion, color, sex (including sexual harassment), gender identity, national origin, age, marital status, disability and military or veteran status, sexual orientation or any other action covered by federal or applicable state/local laws.
Disclaimer The pay range for this position starts as listed in the job posting, but could be higher based on education and experience. Please note, compensation decisions are dependent on the facts and circumstances of each opening. We take into consideration the minimum requirements outlined in the job description, such as an individual's education, training and experience, the position's work location, required travel (if any), and external market conditions when determining the final salary for potential new hires.
Be aware that salary estimates published via alternate online job boards may not be a true representation of the actual pay range offered for this position. Please refer to the Ace position description for the accurate starting pay range information and feel free to discuss this with a Talent Acquisition professional if you are chosen to move forward with an interview.
This written "Position Description" is not intended to cover all aspects of the position listed. It is meant to cover the basic/general essential job functions of a particular position. Ace Hardware Corporation reserves the right to change job duties, including essential job functions, according to business necessity.
