Security Architect

Role Summary

Help us secure the Awesome Bus! As Security Architect, you own the day-to-day security operations that keep Trek protected: lead vulnerability management; run and tune EDR and SIEM; drive incident triage and remediation; identify and remove implicit trust from protect surfaces; and ensure high-signal reporting and dashboards. If you enjoy being responding to events and incidents; implementing, running, tuning, and troubleshooting platforms and tools; and continually improving your security skillset, this role provides a unique and challenging opportunity to defend Trek against an increasingly sophisticated threat landscape.

Key Responsibilities

• Vulnerability management: administer platform health and integration; track remediation SLAs and produce scorecards.
• EDR & SIEM operations: perform daily dashboard checks and connector health, tune detections, and maintain SIEM data pipelines, integrations, and ingest levels.
• Incident triage & response: investigate detections; create/drive incidents to closure; coordinate containment/eradication actions with affected teams.
• Purple team activities: plan, coordinate, and conduct penetration testing activities and guide remediations; manage external providers to ensure assurance.
• Digital product security: manage and monitor SAST/DAST tools; provide software security guidance; and lead threat modeling exercises.
• Exception governance: shepherd Information Security Policy Exception Requests, document risk, set expirations, and ensure follow-through.
• Knowledge management: create and maintain wiki pages, KB articles, and runbooks aligned to service request types.
• Cross-functional partnership: work with systems and cloud engineering, retail, BI, and vendors to unblock remediation work and improve signal quality.
• Operational reporting: keep leadership informed via dashboards and scorecards; monitor ingest and cost signals.
• Create, communicate, and maintain incident documentation, reports, and playbooks.
• Orchestrate and automate routine operational work to improve speed and consistency.
• Promote information security across Trek worldwide and provide technical guidance to other teams.
• Perform other duties as assigned.

Required Qualifications

• At least 10 years’ total experience across Security, IT systems administration/engineering, network administration/engineering, and DevOps.
• 6+ years in security operations/engineering/architecture with hands-on ownership of two or more of Zero Trust, vulnerability management, EDR, SIEM, ITSM integrations, network security, software security, and identity, across Windows/*nix/cloud environments.
• Proven incident handling with workflows and playbooks from creation to closure.
• Experience building practical runbooks/KBs and improving operational signal-to-noise.
• Strong stakeholder communication with vendors/TAMs and internal engineering teams.
• Strong understanding of Windows/*nix/cloud systems, and core network protocols (TCP/IP, DNS, HTTPS).
• Experience with endpoint and network monitoring stacks, identity providers, and logging/SIEM tools.
• Demonstrated curiosity, troubleshooting ability, and clear communication with technical and non-technical stakeholders.
• Holds two or more relevant practitioner certifications: SANS GSEC/GCIH/others, CISSP, CCSP, SSCP, CAP, CEH, CISA.

Trek Benefits:

• Flexible and fun company culture
• Competitive health care
• PPO & HDHP medical plan options, Dental insurance, Vision insurance
• Flexible Spending Accounts (FSA)
• Free life insurance & optional term life insurance
• Competitive vacation package
• 401(k) with match and Employee Stock Ownership Plans (ESOP)
• 12 weeks of maternity leave with 100% pay
• Flexible holiday schedule – 10 company holidays
• Tuition Reimbursement up to $15,000! (Undergraduate & Masters programs)
• Employee discounts on all product
• Deep partner retail discounts