Security Engineer (DevSecOps) na SHEIN

About SHEIN 

SHEIN is a global online fashion and lifestyle retailer, offering SHEIN branded apparel and products from a global network of vendors, all at affordable prices. Headquartered in Singapore, with more than 15,000 employees operating from offices around the world, SHEIN is committed to making the beauty of fashion accessible to all, promoting its industry-leading, on-demand production methodology, for a smarter, future-ready industry. 

Position Summary

SHEIN’s Global Security and Risk Management (GSRM) oversees security infrastructure, risk management, data privacy, business fraud, governance, and regulatory compliance across our global footprint. Our mission: to engineer the future of security—where cutting-edge automation, AI-driven innovation, and global impact converge to protect our most critical digital assets. 

We're seeking an experienced and motivated Security Engineer (DevSecOps) (Official title: Security Engineer I) for our Los Angeles-based corporate office.   

Is your impact limited to closing tickets instead of building systems? Come join us in revolutionizing cybersecurity defense and secure access platforms. This role offers the opportunity to build and operate cutting-edge systems that protect our global fleet in real time. Ideal for engineers who thrive on collaboration, continuous learning, and take ownership of production systems

Your focus here: software-driven EDR/XDR, VPN access, and the platforms that power them.

Job Responsibilities

• Build and support EDR/XDR capabilities such as implementing and tuning rules, signal enrichment, and automated response actions (isolation, process kill, quarantine).
• Develop agents, scripts, and integrations in Python/Go/etc to collect telemetry, enrich context, and orchestrate actions across the fleet.
• Maintain healthy agent coverage: deployment automation, policy baselines, version rollouts, and health monitoring across Windows, macOS, and Linux.
• Operate and improve our corporate VPN service: client profiles, posture checks, split-tunnel policies, SSO/MFA integration, certificate lifecycles, and graceful failover.
• Instrument VPN services with metrics, logs, and health checks; reduce connect-time errors and increase session stability.
• Automate user onboarding/offboarding, device trust, and exception handling through APIs and runbooks.
• Contribute to internal security services and APIs that manage detections, playbooks, secrets, and policy-as-code for EDR/XDR and VPN.
• Build and maintain telemetry pipelines and data quality checks (schema validation, deduplication, enrichment), feeding SIEM/XDR analytics.
• Ship CI/CD pipelines, automated tests, and canary releases for security services; drive monitoring with dashboards, alerts, and SLOs.
• Join a global team to triage alerts; perform first-line remediation; escalate with enriched context and timelines.
• Own and continuously improve runbooks/SOPs; capture lessons learned and automate repetitive steps after incidents.
• Patch management and safe rollbacks for agents, VPN clients, and supporting services; coordinate staged rollouts and post-change validation.
• Tune alert thresholds to reduce noise; maintain service dashboards, capacity signals, and error budgets.
• Partner with IT/Endpoint/Platform teams to troubleshoot user and service issues, from endpoint containment to VPN connectivity.
• Keep architecture diagrams, configurations, and operator guides current.
• Contribute to incident reports and RCAs with actionable follow-ups.
• Work with global teams across time zones to deliver reliable, secure access at scale.

Job Requirements

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or related field is preferred; equivalent practical experience welcomed. Master's is a plus.
• 1-3 years of experience in enterprise environments focused on security, DevSecOps, or platform engineering is preferred; experience in high-transaction environments (e-commerce, fintech, etc.) is a plus.
• Hands-on scripting/automation with at least one language (Python, Go, Java, or similar) for tooling and workflow automation; familiarity with Bash and Linux fundamentals is a plus
• Practical experience with at least one major cloud (AWS, Azure, or Google Cloud); understanding of shared-responsibility and secure configuration basics is a plus.
• Knowledge of network and security fundamentals: TCP/IP, DNS, TLS, VPNs; exposure to SIEM, IDS/IPS, DLP, WAF, firewalls, and NAC is a plus.
• Understanding of identity and access concepts (authentication, authorization, SSO, MFA, IAM, PAM); experience managing secrets/certificate lifecycles is a plus.
• Production mindset: comfortable participating on a global scale, incident triage, change control, and writing high-quality runbooks; able to translate technical findings into clear actions and risk impact.
• Strong communication and documentation skills; collaborative, curious, and coachable. 

Nice to Have

• Mandarin speaking is a plus.

Benefits and Perks 

• Bonus and RSU eligible
• Healthcare (medical, dental, vision, prescription drugs) 
• Health Savings Account with Employer Funding 
• Flexible Spending Accounts (Healthcare and Dependent care) 
• Company-Paid Basic Life/AD&D insurance 
• Company-Paid Short-Term and Long-Term Disability 
• Voluntary Benefit Offerings (Voluntary Life/AD&D, Hospital Indemnity, Critical Illness, and Accident) 
• Employee Assistance Program 
• Business Travel Accident Insurance 
• 401(k) Savings Plan with discretionary company match and access to a financial advisor  
• Vacation, paid holidays, floating holiday and sick days   
• Employee discounts 
• Free weekly catered lunch 
• Dog-friendly office (available at select locations) 
• Free gym access (available at select locations) 
• Free swag giveaways 
• Annual Holiday Party 
• Invitations to pop-ups and other company events 
• Complimentary daily office snacks and beverages

#LI-CR1