Security Engineer

Shipt is seeking a Security Engineer to join its Network and Endpoint Security team, focusing on protecting applications and guiding engineering teams in cybersecurity best practices. This role involves designing, developing, testing, and maintaining secure, reliable security systems, building custom security tools and automations, and collaborating with technology teams to maintain secure network architectures. The engineer will gain hands-on experience safeguarding Shipt’s customers, shoppers, and partners nationwide.

Must Have

• 2+ years of security engineering experience with a proactive approach to software security and reliability
• Experience in maintaining mission-critical software and systems
• Experience with Infrastructure-as-a-Code
• Experience with source version control (Git/GitHub)
• Experience with cloud service providers (GCP/AWS/Azure)
• Experience with cloud security tools (Prisma Cloud, Wiz, Lacework, Orca, etc)
• Experience automating reporting and other tasks using security tool APIs and/or scripting with Python, JavaScript, Go, or Bash
• Experience with a broad range of technologies, operating systems, and networking concepts
• Strong knowledge of networks, firewalls, and security frameworks
• Knowledge of endpoint protection solutions
• Experience working with SIEM platforms and log analysis tools
• Design, develop, test, and maintain secure, reliable security systems
• Build custom security tools, scripts, and automations for detection, analysis, and response
• Collaborate with technology teams to maintain secure network architectures (cloud firewalls, VPNs, IDS/IPS)
• Support issue resolution in production environments
• Implement application development best practices
• Maintain clear technical documentation and participate in code reviews

Good to Have

• Experience working on or closely with security teams
• Familiarity with open-source software and dependency management
• Knowledge of object/document data storage technologies
• Experience with virtual desktop infrastructure
• Familiarity with message queuing technologies and strategies
• Familiarity with IAM-related protocols such as SAML, SPML, SCIM, OpenID, and OAuth
• Security certification(s) such as CISSP, CEH, Security+, etc.

Perks & Benefits

• Medical coverage
• Dental coverage
• Vision coverage
• 401k plan
• Discretionary vacation (for exempt team members)
• Paid holidays
• Paid sick leave
• Annual bonus eligibility
• Potential for restricted stock units

Impact

We are seeking a Security Engineer, to join Shipt’s Network and Endpoint Security team, a critical group focused on protecting our applications and guiding engineering teams in cybersecurity best practices. This role is ideal for engineers passionate about securing systems, collaboration, and growth. We value individuals who can work independently and in teams, enjoy sharing knowledge, and have a strong interest in mentoring colleagues as our engineering organization expands. You will gain hands-on experience working across disciplines to safeguard Shipt’s customers, shoppers, and partners nationwide. Mentorship from experienced engineers will cover areas ranging from software design to communication strategies, providing exposure to one of the company’s most crucial technical domains. Key responsibilities include designing, developing, testing, and maintaining secure, reliable security systems, as well as building custom security tools,scripts, and automations to facilitate detection, analysis, and response. You will collaborate with technology teams to maintain secure network architectures, including cloud firewalls, VPNs, and IDS/IPS systems, while supporting issue resolution in production environments. The role also involves implementing application development best practices, maintaining clear technical documentation, participating in code reviews, and leading by example in work ethic and ownership. Agile methodologies will guide your work in delivering impactful solutions in a product-focused environment.

What You’ll Need to Be Successful

• 2+ years of security engineering experience with a proactive approach to software security and reliability
• Experience in maintaining mission-critical software and systems
• Experience with Infrastructure-as-a-Code
• Experience with source version control (Git/GitHub)
• Experience with cloud service providers (GCP/AWS/Azure)
• Experience with with cloud security tools (Prisma Cloud, Wiz, Lacework, Orca, etc)
• Experience automating reporting and other tasks using security tool APIs and/or scripting with Python, JavaScript, Go, or Bash
• Experience with a broad range of technologies, operating systems, and networking concepts
• Strong knowledge of networks, firewalls, and security frameworks
• Knowledge of endpoint protection solutions
• Experience working with SIEM platforms and log analysis tools
• A passion for continual learning and mastering new skills
• Excellent communication skills, both written and verbal, to simplify complex ideas
• Strong analytical and problem-solving skills with attention to detail
• Enjoyment of learning from and mentoring other engineers

Nice to Have:

• Experience working on or closely with security teams
• Familiarity with open-source software and dependency management
• Knowledge of object/document data storage technologies
• Experience with virtual desktop infrastructure
• Familiarity with message queuing technologies and strategies
• Familiarity with IAM-related protocols such as SAML, SPML, SCIM, OpenID, and OAuth
• Security certification(s) such as CISSP, CEH, Security+, etc.

Skills & Education

This list includes key skills used in this job but is not inclusive of all skills needed for the role. Please see any required education below.

Agile Methodology, Cloud Security, Collaborating, Security Framework, Software Security

Bachelor's Degree or equivalent experience | Required

Work Arrangement

Shipt considers candidates located near a Shipt office or workspace in Birmingham, San Francisco, or Minneapolis to be hybrid, which means that they have the flexibility to work from home (with leader approval) or at a Shipt office in order to facilitate the ability to innovate, collaborate, and spark team connections. In-office expectations will vary by role and leader. Certain roles may require in-office presence on a full-time basis. Please work with your recruiter to learn more about the classification of this role.

About Shipt

Shipt is a retail tech company that connects people to reliable, high-quality delivery with a personal touch. Shipt connects customers to the things they want from the stores they love, retail businesses to more satisfied customers, and workers to new earning opportunities.

At Shipt, we aim to put our team first to boost a sense of belonging, spark opportunities for growth, provide unique benefits and commit to giving back to our communities in ways that make life better, both personally and professionally. We understand that our service, our culture, and our connection to our communities are only made better by every single person who shows up to work here every day. Learn More.

Shipt is an independently operated, wholly owned subsidiary of Target Corporation and available in more than 5,000 U.S. cities. Shipt was founded and is headquartered in Birmingham, Alabama. For more information, please visit Shipt’s company site at Shipt.com.

We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, color, national origin, ethnicity, religion or religious belief, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender, gender identity, gender expression, transgender status, sexual stereotypes, age, military or veteran status, disability, or any other characteristic protected by law.

Please inform your recruiting contact upon initial connection if you need a reasonable accommodation. If you need assistance filling out a job application, please complete this form.

Employees (and eligible family members) are covered by medical, dental, vision and more. Employees may enroll in our company’s 401k plan. Employees will also be eligible to receive discretionary vacation for exempt team members, paid holidays throughout the calendar year and paid sick leave. Other compensation includes eligibility for an annual bonus and the potential for restricted stock units based on role.

Pay Range:

Metro Areas of Boston, District of Columbia, Los Angeles, San Francisco, Seattle and New York City:

$75,900-$151,700

All other locations:

$63,100-$126,300

Please note that the salary range above is a guideline, and individual total compensation will vary based on factors such as qualifications, skill level, competencies, and work location.