Senior IT Security Engineer

About the Company

e.l.f. Beauty, Inc. stands with every eye, lip, face and paw. Our deep commitment to clean, cruelty free beauty at an incredible value has fueled the success of our flagship brand e.l.f. Cosmetics since 2004 and driven our portfolio expansion. Today, our multi-brand portfolio includes e.l.f. Cosmetics, e.l.f. SKIN, pioneering clean beauty brand Well People, Keys Soulcare, a groundbreaking lifestyle beauty brand created with Alicia Keys, Naturium, high-performance, biocompatible, clinically-effective and accessible skin care, and our newest brand, rhode, a line of curated skincare essentials, formulated for a variety of skin types and needs with high performance ingredients, it's a daily routine that nourishes your skin barrier over time.

In our Fiscal year 25, we had net sales of $1 Billion and our business performance has been nothing short of extraordinary with 26 consecutive quarters of net sales growth. We are the #2 mass cosmetics brand in the US and are the fastest growing mass cosmetics brand among the top 5. Our total compensation philosophy offers every full-time new hire competitive pay and benefits, bonus eligibility (200% of target over the last six fiscal years), equity, flexible time off, year-round half-day Fridays, and a hybrid 3 day in office, 2 day at home work environment. We believe the combination of our unique culture, total compensation, workplace flexibility and care for the team is unmatched across not just beauty but any industry.

Visit our Career Page to learn more about our team :

Position Summary

We are seeking a highly skilled Senior Information Security Engineer to lead enterprise-wide cybersecurity initiatives and strengthen our security posture across on-premises and cloud environments. This role involves designing and implementing advanced security solutions, including Zero Trust, DLP, Cloud Security, Network Segmentation, IAM, and Security Automation. The ideal candidate will collaborate with cross-functional teams to identify risks, develop mitigation strategies, ensure regulatory compliance, and proactively defend against evolving threats while safeguarding our systems, data, and infrastructure.

Responsibilities

• Design, build, deploy, and maintain enterprise security technologies and solutions aligned with business objectives, compliance requirements, and the cybersecurity program.
• Develop, document, and enforce security policies, standards, and procedures based on frameworks such as NIST, CIS, ISO 27001, and SOX while advancing overall security maturity, governance, and processes.
• Lead strategic security initiatives, including Zero Trust architecture, Data Loss Prevention (DLP), Cloud Security, Network Segmentation, IAM, Endpoint Security modernization, and security automation.
• Manage and improve email security, DNS security, and other protective controls to defend against phishing, malware, data exfiltration, and domain-based threats.
• Lead vulnerability management programs and drive remediation efforts, providing visibility into risks and progress to stakeholders.
• Oversee incident response lifecycle-detection, analysis, containment, remediation, post-incident review-and continuously enhance disaster recovery and business continuity plans.
• Monitor and analyze security events and network activity (e.g., traffic analysis, host behavior, forensics, kill chain, Windows event analysis), tuning tools, and event correlation for accurate threat detection.
• Collaborate with IT, DevOps, and digital teams to embed security into system design, application development, deployment pipelines, and cloud infrastructure.
• Evaluate and review vendor and partner security practices to ensure alignment with organizational standards.
• Produce regular security dashboards and metrics to report on incidents, threats, and operational effectiveness.
• Lead security awareness training, mentor junior engineers, and guide cross-functional teams on secure design principles and best practices.
• Stay current on emerging threats, vulnerabilities, and technologies to enhance enterprise resilience.

Must Have

Deep knowledge of network, cloud, and endpoint security .

Hands-on experience with firewalls, SIEM tools (e.g., Splunk, Sentinel) , EDR / XDR , IAM , and vulnerability management .

Understanding of encryption, authentication, and secure architecture design .

Ability to detect, analyze, and respond to security incidents effectively.

Skilled in log analysis, threat hunting, and forensics .

Familiarity with MITRE ATT&CK , common attack techniques , and SOC operations .

Strong ability to assess vulnerabilities , prioritize risks , and implement mitigations .

Can translate technical findings into business impact and communicate clearly with both technical and non-technical teams.

Understanding of security frameworks and compliance standards (NIST, ISO 27001, CIS).

Requirements :

$110,000 - $140,000 a year

This job description is intended to describe the general nature and level of work being performed in this position. It also reflects the general details considered necessary to describe the principal functions of the job identified, and shall not be considered, as detailed description of all the work required inherent in the job. It is not an exhaustive list of responsibilities, and it is subject to changes and exceptions at the supervisors' discretion.

e.l.f. Beauty respects your privacy. Please see our Job Applicant Privacy Notice (www.elfbeauty.com / us-job-applicant-privacy-notice) for how your personal information is used and shared.

We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.