Senior Principal Engineer - Cybersecurity (Hybrid - Seattle)
Nordstrom · Seattle, WA · 1 wk ago
HybridInformation TechnologyFull-time
Role Summary
Visionary enterprise security leader defining organizational direction and industry-leading practices for platform security across Nordstrom's technology ecosystem. Establishes foundational security principles, strategic roadmaps, and governance frameworks that shape how Nordstrom secures platforms at scale, including emerging technologies, multi-cloud environments, and next-generation computing paradigms. Serves as the organization's foremost authority on platform security architecture with influence extending across technology and business leadership.Key Responsibilities
- Strategic Leadership & Vision
- Define and evangelize the long-term platform security vision aligned with enterprise technology strategy and business objectives
- Establish organization-wide platform security principles, standards, and governance frameworks that influence technology decisions at the highest levels
- Drive Executive level platform security strategy discussions, translating complex technical security concepts into business risk and opportunity
- Lead cross-functional security transformation initiatives that fundamentally reshape how Nordstrom approaches platform security
- Enterprise Architecture & Innovation
- Architect enterprise-wide security solutions for emerging and disruptive technologies (genAI, edge computing, decentralized systems)
- Develop comprehensive reference architectures and security patterns that become organizational standards across all technology domains
- Pioneer innovative security approaches that position Nordstrom as an industry leader in platform security practices
- Influence vendor roadmaps and industry standards through thought leadership and strategic partnerships
- Risk & Business Impact
- Quantify and communicate platform security investments in terms of business risk reduction, revenue protection, and competitive advantage
- Develop sophisticated security measurement frameworks that demonstrate clear ROI and business value to executive leadership
- Lead security risk modeling for enterprise-critical platform decisions with multi-million dollar business implications
- Balance security requirements with business velocity, establishing practical risk-based approaches for the organization
- Organization & Talent Development
- Mentor Principal Engineers, Architects, and senior technical leaders across cybersecurity and technology organizations
- Build and elevate platform security engineering capability across Nordstrom through advisory, coaching, and knowledge sharing
- Represent Nordstrom externally through speaking engagements, publications, and industry collaboration
- Influence hiring strategies and organizational design for platform security capabilities
Required Qualifications
- 12+ years in cybersecurity with 5+ years leading enterprise-level security architecture initiatives
- Demonstrated track record of defining security strategy that influenced organizational direction at Fortune 500 or equivalent scale
- Proven ability to drive consensus and adoption of security standards across diverse technical and business stakeholders
- History of mentoring senior technical talent and elevating organizational security capabilities
- Bachelor's Degree in Information Technology, Computer Science, Cybersecurity or related field; Master's Degree strongly preferred
Preferred Qualifications
- Published thought leadership (patents, peer-reviewed publications, industry presentations) in platform security
- Experience advising C-suite or Board of Directors on technology security strategy
- Track record of influencing industry standards or vendor security capabilities
- Experience in regulated retail, financial services, or similarly complex enterprise environments
Technical Expertise
- Strategic Technologies
- Enterprise security architecture frameworks (SABSA, O-ESA, TOGAF)
- Advanced threat modeling and risk quantification methodologies
- Zero Trust architecture at enterprise scale
- Security for AI/ML
- DevSecOps and platform engineering security patterns
- Platforms & Tools
- Enterprise SIEM/SOAR/XDR platforms and custom security automation at scale
- Multi-cloud security architecture (AWS, Azure, GCP) with hybrid considerations
- Container orchestration security (Kubernetes, service mesh, serverless)
- AI/ML platforms, LLMs, and emerging technology stacks
- Infrastructure as Code security (Terraform, CloudFormation, security policy as code)
- Languages & Automation
- Python, Go, Java for security automation and tooling
- Security domain-specific languages and frameworks
Leadership Competencies
- Core Leadership Skills
- Strategic Mindset – Defines multi-year vision with organizational impact
- Drives Vision – Inspires adoption of security principles across the enterprise
- Decision Quality – Makes high-stakes architectural decisions with incomplete information
- Influences & Communicates – Shapes thinking of senior leadership and technical experts alike
- Buils Trust – Establishes credibility as the organization's platform security authority
- Organizational Impact
- Develops People – Elevates capability of senior technical staff and future leaders
- Builds Teams – Fosters collaboration across organizational boundaries
- Navigates Complexity – Navigates ambiguous, cross-functional security challenges
- Drives Results – Delivers transformational security outcomes with measurable business impact
- Has Courage – Makes principled security recommendations even when facing organizational resistance
Benefits
- Medical/Vision, Dental, Retirement and Paid Time Away
- Life Insurance and Disability
- Merchandise Discount and EAP Resources