IT Security Engineer

Arhaus was founded in 1986 on a simple idea: Furniture and décor should be sustainably sourced, lovingly made, and built to last. Today, we partner with artisans around the world who share our vision, creating beautiful, heirloom-quality pieces that can be used—and loved—for generations.

As an IT Security Engineer, you will design, implement, and manage security solutions that protect our hybrid infrastructure, including data centers, cloud environments (e.g., AWS, Azure), eCommerce platforms, distribution centers, call centers and retail store systems. You will work closely with IT, DevOps, Compliance and Business teams to ensure security is integrated into all aspects of our technology operations.
 
Essential Duties & Responsibilities:

• Design, implement, and support security controls and tools across data centers, cloud environments (AWS, Azure), and distributed systems including distribution centers and call centers.
• Monitor security alerts and perform incident triage, investigation, and response activities.
• Perform threat modeling and risk assessments for new technologies and services.
• Develop and enforce security policies, standards, and procedures aligned with industry best practices (e.g., NIST, CIS, PCI-DSS).
• Work closely with IT, DevOps, and Data Engineering teams to embed security in infrastructure, automation, and data workflows.
• Manage security tools and platforms (e.g., SIEM, IDS/IPS, endpoint protection, firewalls, WAFs, vulnerability scanners).
• Conduct periodic security assessments, risk assessments, penetration tests, and audits.
• Participate in incident response planning and exercises, and lead investigations as needed.
• Evaluate and recommend new security tools and technologies based on the evolving threat landscape and business needs.
• Support regulatory compliance initiatives and internal/external audits (e.g., PCI-DSS, SOX, CCPA).

Requirements:

• Bachelor’s degree in Computer Science, Information Security, or a related field, or equivalent work experience.
• 3+ years of hands-on experience in cybersecurity engineering or a related role.
• Solid understanding of security principles across infrastructure, network, application, and cloud domains.
• Experience with cloud platforms such as AWS and/or Azure, including security services (e.g., IAM, security groups, Key Management Services).
• Familiarity with compliance standards such as PCI-DSS, SOX, and GDPR.
• Proficiency with scripting or programming (e.g., Python, Bash, PowerShell) for automation and tooling.
• Strong experience with enterprise security tools (e.g., Splunk, CrowdStrike, Qualys, Palo Alto Networks, Fortinet).

Preferred:

• Certifications such as Security+, GSEC, SSCP, or cloud security certifications (e.g., AWS Certified Security Specialty).
• Familiarity with data warehouse security (e.g., Snowflake, BigQuery, Redshift)
• Experience securing eCommerce platforms (e.g., Shopify, Magento, or custom-built environments).
• Understanding of retail IT environments including POS systems and in-store networking.
• Exposure to Zero Trust architectures and modern identity solutions (e.g., Okta, Azure AD).

Arhaus is an Equal Opportunity Employer and prohibits discrimination and harassment of any kind. Arhaus is committed to the principle of equal employment opportunity for all employees and to providing employees with a work environment free of discrimination and harassment. All employment decisions at Arhaus are based on business needs, job requirements, and individual qualifications, without regard to race, color, sex, sexual orientation, gender identity, religion or belief, family or parental status, or any other status protected by the laws or regulations in the locations where we operate. Arhaus will not tolerate discrimination or harassment based on any of these characteristics. Arhaus encourages applicants of all ages.