The latest news
Framingham, MA, US
Text size
aA+ aA-
Click here to print

sr. Manager, Security Engineering & Operations, Digital IT

Country : USA USA

State : Massachusetts

County : Middlesex County

Town : Framingham

Category : Production - Quality

Contract type : Permanent

Availability : Full time

Company presentation

TJX is an exciting place to work and we count on our Associates to bring our business to life. Staying true to our open, collaborative culture and values of honesty, integrity, and treating each other with dignity and respect is a top priority for us.

Job description

- Develop and execute Digital Security Roadmap of process, technology, and partners that drives global standardization and most importantly proactively secures TJX Digital Assets while providing a seamless and exciting customer experience
- Lead investigations, incident handling process and communication while reporting to senior leadership with periodic updates
- Develop standard operating procedures and timely response plans
- Provide day-to-day oversight of security event monitoring and analysis through internal and external partners
- Recommends course of action for identification, triage, containment, and eradication strategy of active threats
- Lead a Global Team and mentor early in career analysts to develop security skills inhouse
- Coordinate prioritization of level 1/2/3 security alert monitoring and triage for (MSSP, 24x7 team)
- Infuse team with mentality of Proactive response rather than reactive through Threat Modelling, IR Dry-Runs - Find the attacker before they find us
- Whether during daily operations or Incident Response, this role will be expected to influence other organizations, build trust and improve cross-organization teamwork and visibility
- Collaborates with user community and assists with IT security needs and development projects through bespoke NFRs.
- Ability to coordinate, standardize, and lead all ITIL problem management activities ensuring root cause and prevention is identified
Sr. Manager of Security Engineering and Operations
is responsible for running the daily mission of defending Digital Assets including TJX E-commerce, Marketing sites, and Mobile Apps against cyber threats by proactively developing and implementing a strategic security roadmap and managing security operations. They will bring thought leadership around strategy, technology, governance, and operations with TJX's rapidly growing E-commerce sites. We are seeking a Sr. Manager who bring experience in the Digital environment investigating Web, Network and Endpoint Intrusions, in-depth experience handling security incidents (identify, triage, and mitigate) and providing pragmatic security consultation for projects that enable our development teams to deliver a flawless and secure experience.
In addition to leading the team in prioritizing responses to structured alerts, the Sr. Manager will triage event escalation and coordinate incident response procedures. We're looking for a candidate to work in the fast-paced entrepreneurial environment to resolve moderate to sophisticated problems independently and know when to escalate issues to senior management. Ideal candidate will work with multiple technology platforms and collaborate with other groups e.g., IT Security, Operations, Managed and offshore partners, and other technology and business functions to develop a comprehensive and proactive strategy to secure TJX's Digital platforms. Additional responsibilities include mentoring and training of a global team to foster collaboration, process rigor, transparency, and customer focus.


- In depth understanding of computer security concepts including Identity & Access Management, Network Security, Application Security, and Incident Management
- In-depth understanding of networking concepts and protocols (such as DNS, SMTP, FTP, SSL, etc.)
- Experience with Cloud Security Products (WAF/Bot-Management) including Content Delivery Network
- 8+ years in IT Security environment or equivalent1-3 years of SOC or Incident Response management experience
- Proven knowledge and understanding of information technology industry trends and emerging technologies and an ability to relate them to the company and its objective
- Intermediate knowledge of tools and products used in day-to-day performance of job responsibilities (e.g., IDS/IPS, EDR, SIEM)
- Familiar with IT Regulations, PCI/ISO 27001-27002/Sarbanes-OxleyGDPR/CCPA/Mass Privacy laws etc.
- Bachelor's Degree in Computer Science/Information Assurance/Information Security or equivalent experience
- Relevant industry certification is preferred (GCIA, GCIH, GWAPT, CISSP, CEH)
Join us and Discover Different at TJX, click here to learn more.
Come Discover Different at TJX. From opportunity and teamwork to growth, we think you'll find that it's so much more than a job. When you're a part of our global TJX family, you have the full support of a diverse, close-knit group of people dedicated to finding great deals and fantastic style. Best of all? They have a lot of fun doing it.
We care about our culture, but we also prioritize the tangible stuff (Competitive salaries: check. Solid benefits: check. Plenty of room for advancement: of course). It's our way of empowering you to make your career here.
We consider all applicants for employment without regard to race, color, religion, gender, sexual orientation, national origin, age, disability, gender identity and expression, marital or military status. We also provide reasonable accommodations to qualified individuals with disabilities in accordance with the Americans with Disabilities Act and applicable state and local law.
COVID-19 vaccination is a condition of employment at TJX, subject to reasonable accommodation where required by law.
Click here to print